Meanwhile, UPI payment users must stay alert against banking-related scams. Recently, experts discovered new malware named “Digital Lutera.” Consequently, this malicious software can steal money from UPI accounts. Unlike traditional scams, this malware does not depend on calls or messages. Instead, it directly gains access to Android devices. Therefore, users must understand the working process alongside prevention methods.
What Is The ‘Digital Lutera’ Malware
Firstly, Gadgets360 reported this malware discovery publicly. However, the attack method differs from common online scams. Usually, scammers send malicious links through calls or text messages. However, Digital Lutera operates using different techniques. Specifically, it acts as a fraud toolkit. Furthermore, the tool bypasses UPI banking access and SMS-based OTP verification. Consequently, attackers can gain unauthorized account control.
How The Malware Enters Devices
Meanwhile, hackers distribute this malware through APK files. Therefore, infection begins when a user downloads an infected APK file. Immediately after installation, the malware enters the device system. During installation, the APK requests permission to read and write SMS messages. Once users approve permissions, the malware activates silently. Subsequently, the program works continuously in the background.
How Hackers Use The Malware
Meanwhile, the malware quietly monitors banking verification messages. Therefore, it tracks OTP-related SMS notifications automatically. Consequently, hackers controlling the malware can access sensitive banking details. Eventually, attackers break into UPI accounts using captured information.
NPCI Responds To Malware Concerns
Meanwhile, the National Payments Corporation of India responded to these reports. NPCI operates the UPI platform across India. According to NPCI, experts already analyzed the malware reports carefully. Moreover, the organization stated that UPI already contains strong security measures. Therefore, these systems help protect users against such risks.
How Users Can Stay Safe From This Scam
Firstly, Android users should download applications only from trusted platforms like Google Play Store. Secondly, users must reject links asking them to download APK files through messages. Furthermore, never install applications from unknown sources or suspicious links. Additionally, keep Google Play Protect enabled on the smartphone. Finally, update the phone software regularly for better security.
