MALWARE masquerading as banking, fitness and document scanning apps has infiltrated the phones of over 300,000 Android users.
The nefarious Trojan software can log keystrokes and remotely send personal data to offsite criminals, then hack messaging apps and spread the infection to other phones in the same network.
2
2
A November report by ThreatFabric detailed the infected apps, which included QR code readers, crypto wallets and document scanners, and have been downloaded by a total of more than 300,000 users.
The apps seem innocuous, and according to ThreatFabric, the malware can even be dormant when first downloaded, then activated remotely to harvest information.
In some instances, the malware is introduced to the app via update, making it harder for users to detect.
If you believe your phone is infected, the first thing to do is delete any of the suspicious apps as quickly as possible and run an anti-virus scan.
Then, keep an eye out for other symptoms of malware.
For example, if apps are crashing for seemingly no reason, your phone could be infected.
Also, if there is a sudden spike in your data or battery usage, it could be that malware is running background tasks on your device.
Check to make sure none of your friends have received mysterious messages from you, especially with strange links.
Malware can use your phone to send messages to people in your contacts list, and further infect your network.
Your best options for protection: installing strong antivirus software and doing regular security checks, and making sure you’re always on the latest operating system.
Use a privacy-focused browser and make sure your security settings are locked down tight to prevent malware from infecting your phone from seemingly innocuous websites.
Google’s Play Store has dealt with a series of app issues in recent months.
Earlier this year, Android users were warned to be on the lookout for “FluBot” malware, which was scamming users by sending malicious SMS messages disguised as texts about missed deliveries.
Victims were getting messages supposedly from delivery services, which included links to do things like, “rearrange delivery.”
After clicking on the link, users were prompted to download a phishing app that had the FluBot malware embedded in it.
Once it received necessary permissions from unsuspecting victims, FluBot gained access to the entire device and acted “as spyware, SMS spammer, and credit card and banking credential stealers,” according to cybersecurity company Proofpoint.
The virus can be removed from phones manually, but the best way to wipe it is by a factory reset.
New Google Android bug ‘lets hackers spy through your phone’s camera’, experts warn
We pay for your stories!
Do you have a story for The US Sun team?
