A virus has been spotted hiding popular fake Android apps. This infostealer pretends to be Google, Instagram, WhatsApp, Snapchat, or X.com. Hackers have also boosted this malware with new features to steal even more personal data.
Scammers haven’t finished surprising us with their increasingly advanced phishing techniques. The latest scam has been detected by SonicWall’s security experts. It is a horse disguised as a popular Android application such as Google, Instagram, WhatsApp, Snapchat and X.com. Once installed, this malicious app takes full control of your smartphone to steal as much personal data as possible.
But as if stealing personal data wasn’t enough, hackers have equipped this malware with new advanced features such as opening phishing web pages to steal your credentials. A real nightmare for Android users, who will be fooled by this particularly well-thought-out deception.
Ultra-intrusive malware disguised as popular Android apps
This new Trojan spotted by cybersecurity experts at SonicWall starts by masquerading as a very popular consumer Android application, as well as social networks. Hackers have naturally set their sights on Instagram, WhatsApp, Snapchat, and X.com, among others, to encourage users to install their malicious app.
Once installed on the victim’s smartphone, this trojan is ultra-intrusive and gives itself total control over the mobile device. Start by requesting two permissions from the user: access to the Accessibility Service and Device Administrator permission. With these permissions, the malware can perform as many malicious actions as it wants without the user’s knowledge. Neither seen nor known.
By connecting to a command-and-control server, the trojan receives a multitude of instructions from the hackers – read text messages and calls, retrieve contacts, change wallpaper, open phishing web pages, vibrate the smartphone, send text messages, activate the flash, etc. The possibilities are almost endless for these cybercriminals who now have full access to their victim’s device.
5 Reflexes to Adopt to Avoid These Fake Android App Scams
In the face of the proliferation of these scams that mimic popular applications, it is crucial to remain very vigilant. Clubic advises you to adopt these 5 reflexes to avoid being deceived.
Before installing an app, always check that the publisher is legitimate. Be wary of questionable accounts or unknown developers. Performing a simple search with the publisher’s name will quickly enlighten you on its trustworthiness. And while you’re at it, take a look at the reviews. Take the time to check other users’ ratings and reviews in a Play Store, even in the official Google Play Store. Bad experiences or scam reviews are often revealing.
Secondly, a minimum of authorisations must be granted. Be especially careful if an app asks you for very intrusive access permissions as soon as it is installed, such as your device administrator. This is usually a warning sign.
In addition, it monitors the data and battery usage of the cell phone. In principle, unless a legitimate app is faulty, it should not cause excessive data or battery consumption in the background. If so, uninstall it immediately.
Finally, and this is probably the best way to protect yourself as much as possible, opt for official sources. Only install apps from the official Google Play Store, and if you want to take a back road, be careful by following the tips above.