Contactless banking for thee (and for thief): NFC money theft scheme reaches Russian users

**NGate (Android.Banker.NGate.1) NFC banking trojan:** Doctor Web warns of new NGate variants targeting Russian users via phishing and malicious APKs disguised as government or bank apps; the malware is a modified open‑source NFCGate that captures and relays NFC card data (including card number and expiry) without requiring root, enabling attackers to withdraw cash or perform contactless payments by combining relayed card data with PINs obtained through social engineering. The report includes indicators of compromise and practical mitigation steps such as using antivirus, installing apps only from official stores, and not sharing PIN/CVV information.