IndusInd Bank faced a severe cybersecurity incident where a fake banking app, mimicking the bank's legitimate services, targeted Indian users. The app was loaded with malware that leveraged .NET MAUI to obfuscate malicious code and evade standard detection measures. Personal and banking data were compromised when users unknowingly submitted their sensitive information to the app. The hidden .NET MAUI payload facilitated the theft, which subsequently transmitted the data to a command and control server operated by attackers. This incident represents a sophisticated and targeted approach to financial cyber attacks, resulting in the compromise of customer trust and potentially financial assets.
Source: https://securityaffairs.com/175843/cyber-crime/android-malware-uses-net-maui-to-evade-detection.html
"id": "ind000032625",
"linkid": "indusind-bank",
"type": "Cyber Attack",
"date": "3/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"