Connect with us

Hi, what are you looking for?

Security

New malware for Android banking apps is spreading across Europe

New malware for Android banking apps is spreading across Europe

Android is once again attacked by a new type of Trojan that can steal user credentials and SMS messages, thereby creating conditions for fraudulent acts against banks in Italy, Belgium, Spain, Germany, and the Netherlands. Activities related to tea bags have been known since January, but malicious attacks on financial applications began to appear in late March 2021.

The attack was aimed at banks from the Netherlands to Belgium. Italian online fraud and network security company Cleafy said that the main goal of Teabot is to steal SMS messages and credentials from victims to enable fraud schemes against predetermined bank lists. Once TeaBot is installed on the victim’s device, the attacker can easily receive real-time broadcasts of the victim’s device screen when necessary and interact with accessibility services, copy application packages, and media distribution services (such as VLC Media Player, TeaTv) interaction.

UPS also includes DHL. The malware acts as a dropper and loads a second-level payload that forces the victim to grant access to the accessibility service. Then, TeaBot disables all security features on the victim’s phone. System malware makes it difficult for access to interact with the infected device in real-time and allows hackers to record all keystrokes by taking screenshots and adding malicious overlays at the top of the re-login screen. Credit card-related sacrifices can be deleted. In addition, TeaBot can disable Google Play and Google Protect, intercept your path through SMS messages, and access Google authentication codes.

The collected data is transmitted to the attacker via the remote server every 10 seconds. Recently, the number of Android malware that uses accessibility services to steal data has increased. Similarly, TeaBot uses the same deception tactics as FluBot and pretends to be a harmless delivery application that tries to be ignored. Due to the surge in FluBot infections, the UK and Germany issued warnings last month. Use SMS messages to trick users into installing spyware that uses sensitive information (including passwords).

New malware for Android banking apps is spreading across Europe

credit: Digital Information World

LAST THOUGHTS:

American consumers lost more than $4 billion due to online fraud in just one year

The malware acts as a dropper and loads a second-level payload that forces the victim to grant access to the accessibility service. Recently, the number of Android malware that uses accessibility services to steal data has increased. Similarly, TeaBot uses the same deception tactics as FluBot and pretends to be a harmless delivery application that tries to be ignored.

Content Protection by DMCA.com
mail2box786@gmail.com'
Written By

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

You May Also Like

Artificial intelligence

The capability of a computer program to comprehend is Artificial intelligence. Anything can be considered artificial intelligence as long as it is a program...

News

The current system of vote casting in Pakistan is manually controlled. Votes are cast manually. All the data and information like registered voters, candidates,...

News

In the first round of the competition, 150 participants will be selected from each of the 3 cities (Karachi, Lahore, Islamabad). The onsite exercises...

News

Jazz, Pakistan’s number one 4G operator, and largest broadband and Internet service provider maintained a strategic focus on 4G penetration, investing Rs 13.7 billion...