1、#BHAS BlackHatEventsOperation BlackEcho:Voice Phishing using Fake Financial and Vaccine AppsSpeakers:Hyeji Heo,Sungchan JangContributors:Kuyju Kim,Jinyong Byun,Byungwoo Hwang#BHAS BlackHatEventsSpeakersHyeji HeoSecurity researcher at Financial Security Institute(2017)Masters degree from Chungnam Nat
2、ional University(20152016)Responsible for analyzing and responding to Android malicious appsSungchan JangSecurity researcher at Financial Security Institute(2019)Security engineer at NCSOFT(20162019)Responsible for detecting and responding to phishing sites2#BHAS BlackHatEventsContributorsKuyju KimS
3、ecurity researcher at Financial Security InstituteAuthor of the report“Voice Phishing App Distribution Group Profiling”,published by FSI in 2022.Jinyong ByunSecurity researcher at Financial Security InstituteByungwoo HwangSecurity researcher&Malware analyst at Financial Security Institute3#BHAS Blac
4、kHatEventsOutline1.Background2.Attack Flow3.Malicious Apps4.Infrastructure5.Voice Phishing Scenario6.Countermeasure7.Trend8.Conclusion4#BHAS BlackHatEvents1.BackgroundOperation BlackEcho:Voice Phishing using Fake Financial and Vaccine Apps#BHAS BlackHatEvents Voice Phishing(a.k.a.Vishing)A crime whe
5、re scammers trick people over the phone to get money or personal information.Voice Phishing in South Korea(last 5 years)Understanding Voice PhishingFinancial themeGovernment theme Reference Korean National Police Agency6 High-value damage cases#BHAS BlackHatEvents Malicious AppsMalicious apps play a
6、 crucial role in voice phishing attacks on smartphone users.These apps intercept and block phone calls,tamper with call screens and call logs.New Type of Malicious AppsWhy we did researchFinancial theme app(malicious)Financial theme app(malicious)Vaccine theme app(malicious)Financial app(normal)Vacc