[ad_1]
A new Trojan goes around the android: disguised as an outsourced application that promises to "speed up" the system, malicious software, once installed, uses the official application PayPal to steal up to $ 1,000 from the account of the infected user, even if two-factor authentication is enabled.
The process works as follows: Once installed, the Android optimization application creates an accessibility service called "Enable Statistics", requesting series authorization of phone services , such as phone calls, reading SMS, monitoring and collecting data from the screen. If it has the appropriate permissions, the fake application applies a login request in the official PayPal application (if it is installed). The notification comes from the official application, so that the user does not suspect anything.
With the requested and granted permissions, the application can register contacts on the display, thus "seeing" the pbadword. With two-factor authentication triggered, the false application also "reads" the code received by SMS and accesses the account. Once inside, a transfer is immediately made according to the amount indicated above. The whole process takes on average five seconds to be executed and finalized. If the wallet of the user does not have sufficient funds and no other method to add funds, the only possible failure The WeLiveSecurity team has made a video showing the process: