Dangerous banking Trojans disguised as phone boosters, battery management apps are fooling thousands of people



[ad_1]

While smartphones are becoming cheaper and better and better purchased, more and more people are buying them, especially those from Android, as competition is fiercer among OEMs on the open source platform. than on Apple. But the convenience does not come without its own risks and it seems that Android users are at a higher risk of being fooled by dangerous Trojans disguised as useful applications such as phone boosters, battery and horoscopes.

There are more than two billion devices running Android OS and applications for everything from social networks to food services, etc. Android offers millions of free apps, the best badet for searching apps that simplify life. But neglecting some basic things can be expensive, as was the case of thousands of Android users who have fallen under the spell of malicious applications containing banking malware.

Thanks to the vigilance of ESET, Google Play Store is now safer than before: nearly 30 malicious apps disguised as phone cleaners, battery managers, horoscope apps have been removed after being reported to Google. But since these apps remained on the Play Store, they had already been installed by nearly 30,000 users.

These malicious applications are stealth Trojans that can be remotely controlled after full access to the victim's phone. Applications can intercept call logs, download applications, and even worse, bypbad the two-factor check by redirecting SMS. The applications appeared to belong to a single attacker or group, even though they appeared under different developer names, ESET noted in his post.

India tops the list of malware attacks against Golware: What are the risks and how do you protect and protect your business?

Google Play Store has let in Trojan apps, thousands of users have cracked itkaspersky.com

In addition to obtaining such intrusive access to the compromised device, the malware can borrow the identity of any application on the phone. This is done by getting the HTML code of the apps on the phone and then overlaying fake forms over legitimate apps. End users will not be able to suspect anything.

Below you will find the list of the 29 applications considered as malicious by ESET and deleted since:

1. Power Manager
2. Astro Plus
3. Master Cleaner – CPU Booster
4. Master Clean – Power Amplifier
5. Super Boost Cleaner
6. Super fast cleaner
7. Daily horoscope for all signs of the zodiac
8. Free Daily Horoscope – Compatibility with the horoscope
9. Phone Booster – Clean Master
10. Speed ​​Cleaner – Processor Cooler
11. Ultra Phone Booster
12. Free daily horoscope 2019
13. Free Daily Horoscope Plus – Online Astrology
14. Telephone power amplifier
15. Ultra Cleaner – Power Boost
16. Master Cleaner – CPU Booster
17. Daily Horoscope – Astrological Forecasts
18. Speed ​​Cleaner – CPU Cooler
19. Horoscope 2018
20. Meu Horóscopo
21. Master Clean – Power Amplifier
22. Boost your phone
23. Phone Cleaner – Booster, Optimizer
24. Clean Master Pro Booster 2018
25. Clean Master – Booster Pro
26. BoostFX. Android Cleaner
27. Daily horoscope
28. Daily horoscope
29. Personal horoscope

In addition to this, a separate report pointed to another Trojan horse application similar in nature to the aforementioned list. Disguised as a currency conversion application under the name "Easy Rates Converter", the application downloads a Trojan in the form of "Update Flash Player" in the background.

After successfully entering the Android system security by obtaining the permissions granted by the user, the application waits for the launch of a banking application on the phone. Then, it covers a fake screen application that looks pretty convincing and sends the bank identification information to phishers' servers.

The malicious activity of the application has been reported by Lukas Stefanko, accompanied by a video showing the malicious program in action.

How to stay safe?

Although it's easier to be a victim of these stealthy stealth applications, paying attention to details can go very far in the process. But the best practices are:

  • To download apps from the Play Store
  • To check reviews, ratings and downloads of the app
  • To review permissions before installing applications
  • Have a reliable mobile security solution

[ad_2]
Source link