August 20, 2025, 6:28 am | Read time: 2 minutes
Security researchers have discovered new NFC malware that steals credit card data. Users should be particularly vigilant.
In the digital world, new threats constantly emerge that should make users cautious. Currently, security researchers are warning about new NFC malware targeting the corresponding interface of smartphones, potentially causing financial harm to users.
Threat of Attack from NFC Malware
The malware discovered by Threatfabric security researchers is already being traded in China and spread on Android devices through known fraud methods such as smishing or phishing. After installation, the malware prompts users to hold their credit card to the smartphone, supposedly for authentication. In reality, the credit card data is read and transmitted to criminals.
In addition to data collection, the app also requests the card’s PIN. Through social engineering, attackers manage to persuade victims to install the app and enter their information. Criminals use this information to make payments or withdraw money with the stolen credit card. Currently, such attacks are primarily occurring in Brazil but could potentially happen worldwide.
How You Can Protect Yourself
Particularly concerning is that criminals, with another app, can transmit credit card data from another phone via NFC without a PIN. Payments that do not require PIN entry can thus be easily executed.
To protect yourself from these attacks, never enter your PIN into unknown apps. Only install apps from official sources such as the App Store or Play Store. Be skeptical of app offers or recommendations you receive unsolicited.