well this one’s a doozy

The GoldPickaxe trojan is a dangerous malware targeting both Android and iOS devices. It’s crucial to be aware of its capabilities and how to protect yourself.

What is it?

  • A sophisticated trojan designed to steal your sensitive information, especially biometric data like facial recognition.
  • Developed by a Chinese-speaking threat actor called GoldFactory, known for other banking trojans.
  • Comes in two variants: GoldPickaxe.Android and GoldPickaxe.iOS.

What does it do?

  • Disguises itself as legitimate apps, often mimicking government services.
  • Uses social engineering tactics to trick users into installing it.
  • Once installed, it operates semi-autonomously:
    • Captures your face through video recordings and photos.
    • Steals identity documents you scan within the app.
    • Intercepts incoming SMS messages, particularly those from banks.
    • May use stolen data to create deepfakes for unauthorized access to your bank accounts.

Where has it been found?

  • Primarily targets the Asia-Pacific region, with confirmed cases in Thailand and Vietnam.
  • Could potentially spread to other regions in the future.

How to protect yourself:

  • Never install apps from untrusted sources. Stick to official app stores like Google Play and the App Store.
  • Be wary of phishing and smishing scams. Don’t click on suspicious links or download attachments from unknown senders.
  • Enable two-factor authentication (2FA) on all your accounts, especially financial ones. 2FA adds an extra layer of security that requires a second verification step beyond your password.
  • Keep your device software and apps updated. Updates often include security patches that fix vulnerabilities exploited by malware.
  • Consider using a mobile security solution. These apps can scan for and block malicious apps and websites.

If you suspect you’ve been infected:

  • Do not use your infected device for banking or accessing sensitive information.
  • Scan your device with a reputable antivirus or anti-malware program.
  • Report the infection to the relevant authorities.

Remember, staying informed and vigilant is crucial in protecting yourself from cyber threats like the GoldPickaxe trojan.

Share to your social media, print, email, text, copy link