Locations Rates Contact Wealth Management Employment

A cropped hand touching a padlock symbol

Cybersecurity - Customer Awareness

Banking Malware - GodFather

Cybersecurity – Customer Awareness

GodFather Malware: What You Need to Know to Stay Safe

A new wave of cyber threats is targeting Android smartphone users — and it’s specifically going after banking, investment, and crypto apps. The malware, dubbed GodFather, poses a major risk by hijacking legitimate apps and intercepting your login activity in real-time.

What Is GodFather Malware?

GodFather is a type of malicious software known as a banking trojan. It operates on Android devices and uses advanced tactics to silently spy on users while they interact with their financial apps. In many cases, the malware embeds itself in lookalike or repackaged apps, tricking users into granting permissions that give attackers full control.

What makes the new variant especially dangerous is its ability to run the real banking app in a hidden virtual environment, allowing it to capture credentials, messages, and even multi-factor authentication codes — all without the user realizing anything is wrong.

How It Spreads

The GodFather malware typically gets onto your phone via:

  • Fake or repackaged apps downloaded from unofficial sources
  • Links sent via phishing texts, emails, or social media
  • Apps asking for excessive permissions like Accessibility Services or screen recording

Once installed, it operates stealthily and often avoids detection by antivirus tools.

How to Protect Yourself

Here are some best practices to safeguard your mobile banking experience:

  1. Only download apps from official stores like Google Play or Samsung Galaxy Store.
  2. Be cautious with permissions — avoid apps that request Accessibility or screen-sharing features unnecessarily.
  3. Update your phone regularly to benefit from the latest security patches.
  4. Use strong, unique passwords and enable biometric authentication where possible.
  5. Enable MFA (multi-factor authentication) using an authenticator app (not SMS) for better protection.
  6. Install mobile security software from a reputable provider.
  7. Avoid clicking on suspicious links in messages or emails, especially those urging immediate action.

What to Do If You’re Affected

If you suspect that your phone is infected with malware:

  • Immediately stop using the device for financial activity.
  • Delete unfamiliar or suspicious apps.
  • Contact your bank to report potential fraud.
  • Reset your phone to factory settings after backing up essential data.
  • Change your passwords using a clean device.

Stay Informed, Stay Secure

Cybercriminals are constantly evolving their tactics, and threats like GodFather highlight the importance of staying vigilant. By practicing safe habits and keeping your software updated, you can drastically reduce your risk of becoming a victim.