.
Unfortunately for the millions of Android smartphone users, we have received information that the SharkBot malware is back on the Google Play Store, spread across two antivirus apps. These apps that are supposed to be protecting users make us vulnerable to a dangerous trojan that can steal your bank details.
The latest alert was released by a team of researchers from the company Fox-IT, after confirming that they had found the trojan in applications “Mister Phone Cleaner” and “Kylhavy Mobile Security”. These two apps have over 50,000 and 10,000 downloads, respectively.
As with so many other trojans, SharkBot is designed to steal bank account access credentials. However, the most worrying fact is that it doesn’t need the usual permissions on the device. Interestingly this is a very smart malware, not attacking every chance it gets, ignoring users from China, India, Romania, Russia, Ukraine and Belarus.
How does this malware attacking Android smartphones work?
The SharkBot trojan has two main ways of attacking users and trying to steal their username and password to access bank accounts.
The first way is a simple phishing attack, where the malware detects that the user opens a banking application and presents a fake page, created to store login data. This is a page that looks almost identical to the original, making it very difficult to understand what is happening.
When this form does not generate the desired results, the trojan uses the registration of “key presses” to be able to identify the login data. These data are sent to an external server, where all the information is stored.
If you have any of these applications installed on your smartphone, don’t waste time, uninstall them now!
Follow all the technological updates on TecheNet through telegram or Whatsapp. All the news in real time and without delays!
Other interesting articles:
.
