MalwareBleeping Computer
8.0 — CRITICAL
NGate Android malware uses HandyPay NFC app to steal card data
A new variant of the NGate malware that steals NFC payment data is targeting Android users by hiding in a trojanized version of HandyPay, a legitimate mobile payments processing tool. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
NGate Android malware is using the HandyPay NFC app to steal payment card data, targeting primarily Android devices in Brazil since November 2025.
⚙️Technical Details
💥Impact Assessment
Severity: high
Who Is at Risk
Android users in Brazil
🛡️Recommended Actions
1Never download APKs from outside Google Play unless explicitly trusted
2Disable NFC if not needed
3Scan for threats with Play Protect, which detects and blocks the latest NGate malware variant
📦Affected Products
Product Name: HandyPay appPlatform: Android
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.