top of page

GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections

4 december 2025 om 09:27:00

thehackernews.com

GoldFactory cybercriminal group is conducting active attacks targeting mobile users in Indonesia, Thailand, and Vietnam since October 2024. The campaign involves distributing modified banking applications that serve as conduits for Android malware. Attackers are impersonating government services to trick users into installing malicious apps. The operation has resulted in over 11,000 infections across Southeast Asia. This represents an ongoing financial threat targeting mobile banking users in the region.

Related links:

https://thehackernews.com/2025/12/goldfactory-hits-southeast-asia-with.html

Related CVE's:

No CVEs found in this article

Related threat actors:

GoldFactory

Affected products:

Android banking applications

IOC's:

No IOCs found in this article

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page