Sri Lanka, April 23 -- Police uncovered a fraudulent scheme where scammers contact individuals via WhatsApp, posing as representatives of Sri Lankan Airlines to promote a malicious mobile application.

Users are directed to three fraudulent websites to download an app named "Sri Lankan.apk," which is actually a dangerous banking Trojan designed to steal financial data.

The application seeks remote access permissions upon installation, allowing hackers to view sensitive personal information.

According to police investigations, these malicious actors prompt users to initiate a transaction, enabling them to capture One-Time Passwords (OTPs), bank account details, and biometric authentication data such as fingerprints and facial recognition...