Check your apps! Warning about Android downloads that are loaded with malware and can steal bank data

Check your apps! Warning about Android downloads that are loaded with malware and can steal bank data

Security researchers have discovered a number of Android apps that contain sophisticated malware.

The 29 apps, ranging from power management apps to horoscope apps, were infected by Trojan malware, which remotely controls the app after they gain access to the victim's phone, said We Live Security, a blog of the company IT company ESET.

After ESET informed Google about the problem, the malicious apps were removed from the Play Store.

However, it is believed to have been installed by almost 30,000 users.

Scroll down for video

Researchers have discovered a number of Android apps that contain sophisticated malware. The apps were removed from the Play Store but downloaded about 30,000 times

Researchers have discovered a number of Android apps that contain sophisticated malware. The apps were removed from the Play Store but downloaded about 30,000 times

Researchers have discovered a number of Android apps that contain sophisticated malware. The apps were removed from the Play Store but downloaded about 30,000 times

The Trojan has been found to affect a number of apps, including "Free Daily Horoscope" and "Power Manager" in the Play Store.

"Unlike the increasingly common malicious apps that rely solely on the identity of legitimate financial institutions and the display of fake login screens, these apps are a category of sophisticated mobile banking malware with complex features and a strong focus on stealth," said We Live Security in a blog post.

The researchers believe the malicious apps were created by a single attacker or a group.

The apps can intercept call logs, download apps, and bypass two-factor authentication to redirect text messaging.

You can do this by getting the HTML code of apps on your device and then inserting fake phishing forms into the apps.

This gives the victim the opportunity to "notice that something is wrong," said ESET.

The 29 apps, ranging from power management to horoscope apps, were infected with Trojan malware that remotely controls the app after they gain access to the victim's phone

The 29 apps, ranging from power management to horoscope apps, were infected with Trojan malware that remotely controls the app after they gain access to the victim's phone

The 29 apps, ranging from power management to horoscope apps, were infected with Trojan malware that remotely controls the app after they gain access to the victim's phone

In some cases, the apps will display an error message after the download stating that the app is not compatible with your device and has been removed.

However, the apps continue to download on the victim's device and hide in the background.

In some cases, they continue to function normally and display relevant information that would otherwise appear normal.

The main purpose of the malware is to dump a user's banking apps, get their credentials, and steal money.

However, ESET did not mention cases where the malware had achieved this.

WHAT APPS WERE FALLEN TO HAVE MALWARE?

ESET found that 29 apps were infected with malware, including:

1. Power Manager

2. Astro Plus

3. Master Cleaner – CPU Booster

4. Master Clean – Power Booster

5. Super Boost Cleaner

6. Super Fast Cleaner

7. Daily horoscope for all zodiac signs

8. Daily Horoscope – Horoscope Compatibility

9. Telephone Amplifier – Clean Master

10. Speed ​​Cleaner – CPU cooler

11. Ultra Phone Booster

12. Free daily horoscope 2019

13. Free Daily Horoscope Plus – Astrology Online

14. Telephone power amplifier

15. Ultra Cleaner – Increased performance

16. Master Cleaner – CPU Booster

17. Daily Horoscope – Astrological Prediction

18. Speed ​​Cleaner – CPU cooler

19. Horoscope 2018

20. Meu Horóscopo

21. Master Clean – Power Booster

22. Increase your phone

23. Telephone Cleaner – Booster, Optimizer

24. Clean the Master Pro Booster 2018

25. Clean Master – Booster Pro

26. BoostFX. Android Cleaner

27. Daily horoscope

28. Daily Horoscope

29. Personal horoscope

The researchers said that the apps do not use "advanced tricks" to continue infecting the device so they can be easily removed.

Victims can simply uninstall them by navigating to Settings, then clicking General and clicking Application Manager / Apps, as ESET notes.

"We also recommend checking your bank account for suspicious transactions and changing the password and PIN code for Internet banking," the researchers said.

ESET also added that Android users should only download apps from Google Play to check how often they were downloaded and their ratings.

They recommend that users look at what permissions they grant to a particular app after it has been downloaded to their device.

Leave a comment

Send a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.