Hackers have no chill! Recently, about 300,000 Android users were fooled into downloading malware apps that stole their private information including banking credentials.
The attack was made public in a report by cybersecurity firm ThreatFabric. For now, the threat has passed as Google Play Store has removed the malicious apps. But it's a reminder of how easy it is to get hacked in the current digital landscape.
Mind you, most of these malicious apps posed as QR scanners, PDF scanners, crypto apps, and fitness trackers - all of utility in the contemporary world.
While most of these apps actually got the job done, i.e., performed the tasks they claimed to do - they were also stealing data in the background, including passwords and private credentials.
In usual cases, Google Play Store catches apps with suspicious codes that aim to harvest user data. But these apps capitalised on a loophole. They shipped the malware in updates instead of in the original app - allowing the developers (read hackers) to submit their apps without coming under Google's radar.
Also read:?Apple Will Inform iPhone Users When They're Targets Of State-Sponsored Hacking
The fact that apps were doing the job they advertised on the app page made users think they were harmless. Noticing a few signs may help though. For instance, the updates for these apps would have asked for more permissions like "Accessibility Services" - that's a red flag right there!
Your best bet? Simply do not give apps permissions that they do not require to perform their basic function. For instance, why would a QR scanner need accessibility settings? There's your answer. In addition, if apps offer updates on third party websites instead of on Google Play - just hit uninstall and run a malware check on your smartphone.
The firm didn't name the now-disabled apps, but instead categorised those into four families based on the type of malware - Anatsa, Alien, Hydra, and Ermac. Anatsa uses accessibility feature to steal private information while Alien intercepts two-factor authentication codes (yep!)
Also read:?WhatsApp Can Now Sue NSO For Pegasus Hacking Into 1400 User Accounts In 2019
Hydra and Ermac can remotely access a device and steal banking information. Moral of the story? Precaution and caution when you download apps!
Did you know that apps could fool Google Play Store and users into divulging private information? Let us know in the comments below. For more in the world of tech and science, keep reading Indiatimes.com.??
Citation
Hesse, B. (2021, December 1). How Hackers Tricked 300,000 Android Users into Downloading Password-Stealing Malware. Lifehacker.?