Researchers at Kaspersky Lab have found an Android trojan that collects payment card data from taxi & ride-hailing apps. The first such banking trojan to phish mobile taxi apps is named Faketoken, which is one of the most advanced and well-maintained tools on the market. The latest version only targets ride services operating in Russia, along with mobile apps for paying traffic tickets issued by the country’s Main Directorate for Road Traffic Safety. The tactic works because many users have linked their Play Store app with a credit card in order to purchase apps, games, books, music, or music.
Source: https://www.bleepingcomputer.com/news/security/banking-trojans-set-their-sights-on-taxi-and-ride-hailing-apps/