Android users in Russia are currently facing a new wave of scams that utilize Trojan software and Near Field Communication (NFC) technology. This fraudulent scheme was previously widespread across European countries. Dmitry Galov, the head of Kaspersky GReAT in Russia, brought attention to this growing threat during a recent cybersecurity conference held in Minsk.
The NFC-Trojan schemes typically involve criminals deceiving victims into downloading and installing a malicious application that masquerades as a legitimate financial service. After the app is installed, users are prompted to register and «link» their bank card, but through an unconventional and risky method.
Galov elaborated on one particular variant of the scam: fraudsters instruct victims not to manually input their bank card details (with the exception of the PIN) but instead to simply tap their card against the phone`s NFC reader. He issued a strong warning that complying with these instructions will result in the compromise of bank card data, thereby enabling the criminals to withdraw funds or make unauthorized purchases.
According to Galov, these deceptive practices first gained significant traction in European nations. The scam began to emerge in Russia in late 2024 and has since escalated, becoming one of the increasingly prevalent threats for Android device owners by 2025.
Earlier, experts at Kaspersky Lab had already identified the Mamont Trojan as the most widespread cyber threat among malicious software targeting Android users in Russia, highlighting the persistent challenges in mobile security.
