Friday, September 23, 2022

This dangerous app is making people pauper! Google imposed a ban, did you install it somewhere?

There is such an app on the Google Play Store, which is quite dangerous. It is making the users pauper. Google has banned it, but thousands of people have installed it. Let us know how people's bank money is being blown away...
  • There is such an app on the Google Play Store, which is quite dangerous.
  • Android Banking Trojan has been detected in Google Play.
  • Users in Russia, Hong Kong, and the United States at Target.

A notorious Android banking trojan designed to steal user data such as passwords and text messages has been discovered in Google Play and downloaded thousands of times. The Teapot banking trojan, also known as anatta and toddler, was first seen targeting European banks in May 2021 by stealing two-factor authentication codes sent by text message. A new report from Cliff says that the malware has evolved to include distribution via a second-stage malicious payload and is now targeting users in Russia, Hong Kong, and the United States.

This is happening with the app.

A “dropper” for letting Teapot through fake in-app updates. Droppers are apps that appear legitimate but provide a second-stage malicious payload. Cliffy says that while the malware was distributed via SMS-based phishing campaigns using several common apps such as TTV, VLC media player, and shipping apps such as DHL and UPS, its researchers say the malicious Google Play app was working.

Hunting is being made like this.

The app, “QR Code & Barcode – Scanner,” managed to pull in over 10,000 downloads by the time it was discovered after it was removed. But because the app provides the promised functionality, almost all the reviews for the app are positive. Although the app looks legit, it immediately requests permission to download a second application, “QR Code Scanner: Add-on,” which contains several Teapot samples.

Once installed, Teapot asks permission to view and control the device’s screen to receive sensitive information such as login credentials, SMS messages, and two-factor codes. It also abuses Android’s accessibility service, similar to other malicious Android apps, to request permissions that allow the malware to record keyboard entries.

Over 400 Apps at Target

Cleary says Teapot is now targeting over 400 applications, including home banking apps, insurance apps, crypto wallets, and crypto exchanges, a growth of more than 500% in less than a year.

Follow us today on our Facebook page @indupdatesnews, Twitter @indupdatesnews1, Instagram @indupdatesnews, LinkedIn @indupdatesnews to get the latest information like this. Be the first to read indupdates.com in Gujarati, Hindi, and English.

Read the latest information on the most trusted website indupdates. Your comment is welcome for us. For contact, contact contact@indupdates.com.

Related Articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Stay Connected

0FansLike
3,491FollowersFollow
0SubscribersSubscribe

Latest Articles