Skip to content
logo The magazine for digital lifestyle and entertainment
CoBi News Security Smart Finance All topics
Fraud via NFC

How Criminals Steal Money From Your Smartphones

Person Pays via NFC with Smartphone
New NFC Malware Can Steal Credit Card Data Photo: Getty Images
Share article

August 20, 2025, 6:28 am | Read time: 2 minutes

Security researchers have discovered new NFC malware that steals credit card data. Users should be particularly vigilant.

In the digital world, new threats constantly emerge that should make users cautious. Currently, security researchers are warning about new NFC malware targeting the corresponding interface of smartphones, potentially causing financial harm to users.

Threat of Attack from NFC Malware

The malware discovered by Threatfabric security researchers is already being traded in China and spread on Android devices through known fraud methods such as smishing or phishing. After installation, the malware prompts users to hold their credit card to the smartphone, supposedly for authentication. In reality, the credit card data is read and transmitted to criminals.

In addition to data collection, the app also requests the card’s PIN. Through social engineering, attackers manage to persuade victims to install the app and enter their information. Criminals use this information to make payments or withdraw money with the stolen credit card. Currently, such attacks are primarily occurring in Brazil but could potentially happen worldwide.

How You Can Protect Yourself

Particularly concerning is that criminals, with another app, can transmit credit card data from another phone via NFC without a PIN. Payments that do not require PIN entry can thus be easily executed.

To protect yourself from these attacks, never enter your PIN into unknown apps. Only install apps from official sources such as the App Store or Play Store. Be skeptical of app offers or recommendations you receive unsolicited.

This article is a machine translation of the original German version of TECHBOOK and has been reviewed for accuracy and quality by a native speaker. For feedback, please contact us at info@techbook.de.

You have successfully withdrawn your consent to the processing of personal data through tracking and advertising when using this website. You can now consent to data processing again or object to legitimate interests.