Security experts say that most Android malware fits into one of two buckets: either it's designed to steal one-time codes used to authenticate online transactions, or it's designed to trick users into divulging their online banking credentials or payment card details via a phishing attack. http://www.bankinfosecurity.com/mobile-banking-malware-on-rise-a-8764/op-1