Connect with us

Hi, what are you looking for?

New malware for Android banking apps is spreading across Europe

Security

New malware for Android banking apps is spreading across Europe

Android is once again attacked by a new type of Trojan that can steal user credentials and SMS messages, thereby creating conditions for fraudulent acts against banks in Italy, Belgium, Spain, Germany, and the Netherlands. Activities related to tea bags have been known since January, but malicious attacks on financial applications began to appear in late March 2021.

The attack was aimed at banks from the Netherlands to Belgium. Italian online fraud and network security company Cleafy said that the main goal of Teabot is to steal SMS messages and credentials from victims to enable fraud schemes against predetermined bank lists. Once TeaBot is installed on the victim’s device, the attacker can easily receive real-time broadcasts of the victim’s device screen when necessary and interact with accessibility services, copy application packages, and media distribution services (such as VLC Media Player, TeaTv) interaction.

UPS also includes DHL. The malware acts as a dropper and loads a second-level payload that forces the victim to grant access to the accessibility service. Then, TeaBot disables all security features on the victim’s phone. System malware makes it difficult for access to interact with the infected device in real-time and allows hackers to record all keystrokes by taking screenshots and adding malicious overlays at the top of the re-login screen. Credit card-related sacrifices can be deleted. In addition, TeaBot can disable Google Play and Google Protect, intercept your path through SMS messages, and access Google authentication codes.

The collected data is transmitted to the attacker via the remote server every 10 seconds. Recently, the number of Android malware that uses accessibility services to steal data has increased. Similarly, TeaBot uses the same deception tactics as FluBot and pretends to be a harmless delivery application that tries to be ignored. Due to the surge in FluBot infections, the UK and Germany issued warnings last month. Use SMS messages to trick users into installing spyware that uses sensitive information (including passwords).

New malware for Android banking apps is spreading across Europe

credit: Digital Information World

LAST THOUGHTS:

A new study shows whether YouTube views will have a significant impact on viewers

The malware acts as a dropper and loads a second-level payload that forces the victim to grant access to the accessibility service. Recently, the number of Android malware that uses accessibility services to steal data has increased. Similarly, TeaBot uses the same deception tactics as FluBot and pretends to be a harmless delivery application that tries to be ignored.

mail2box786@gmail.com'
Written By

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

You May Also Like

Showbiz

Pakistani actress Neelam Munirka said that I always try to keep my job while I do not interfere in anyone’s affairs. Pakistani celebrity Neelam...

Celebrity

Catherine McBroom of The Ace Family is speaking out in defense of her husband Austin McBroom after one media outlet alleged that he has...

Entertainment

WWE After the Bell with Corey Graves and Vic Joseph will play host to special guests and surprises in the lead-up to WrestleMania 37 with daily episodes beginning...

Celebrity

Molly Ephraim became popular as Mike Baxter’s daughter on the sitcom Last Man Standing. However, most people don’t know her career highlights in her...

Advertisement