Updated Android malware could hijack your calls to your bank

Remember those TV shows where the bad guy is defeated in one season but comes back even stronger the next? Think “Stranger Things” on Netflix. That’s exactly the malware we’re talking about here. It’s called FakeCalls, and it evolves with new obfuscation methods every time researchers discover how this virus infects devices.

It was reported to impersonate major financial institutions earlier this year, and now security researchers have discovered that the malware has undergone another upgrade. It can even intercept calls you make to your bank using your Android phone.

ENTER CYBERGUY’S $500 HOLIDAY GIFT CARD GIVEAWAY

Man surfing on his Android phone (Kurt “CyberGuy” Knutsson)

What you need to know

FakeCalls is a banking trojan focused on voice phishing; victims are tricked by fake calls impersonating banks and asked to share sensitive information. Previous versions did this by having users call the bank from within an app that impersonated the financial institution. beeping computer. However, the latest version analyzed by ZimperiumIt sets itself as the default call handler.

The default call handler app manages incoming and outgoing calls, allowing users to answer, reject, or initiate calls. As you can imagine, giving these permissions to a malicious application carries serious risks.

Once a user gives the app permission to set itself as the default call handler, the malware gets the green light to block and intercept both outgoing and incoming calls. It even shows a fake dialing interface that resembles the real Android dialer, complete with reliable contact information and names. This level of deception makes it really hard for victims to see what’s going on.

“When the compromised individual attempts to contact the financial institution, the malware forwards the call to a fake number controlled by the attacker,” the new Zimperium report explains. “The malicious app will deceive the user by displaying a convincing fake user interface that appears to be the legitimate Android calling interface displaying the real bank’s phone number.”

“Since the malware’s fake user interface will mimic the real banking experience, the victim will be unaware of the manipulation, allowing the attacker to obtain sensitive information or gain unauthorized access to the victim’s financial accounts,” the report said.

Android home screen (Kurt “CyberGuy” Knutsson)

ANDROID BANKING TROJAN GOES UNDETECTED AND ATTACKS GLOBALLY

Malware can also steal your data

This malware can not only hijack your calls but also steal your data. It gives it access to Android’s Accessibility permissions, which basically gives it the power to do anything it wants. The malware’s developer also added several new commands, including the ability to start live streaming the device’s screen, take screenshots, unlock the device if it’s locked, and temporarily turn off auto-locking. It can also use accessibility features to emulate a home button press, delete images specified by the command server, and access, compress, and load photos and thumbnails from storage, specifically the DCIM folder.

android phone (Kurt “CyberGuy” Knutsson)

ANDROID BANKING TROJAN SPEAKS GOOGLE PLAY TO STEAL YOUR DATA

6 ways to protect yourself from FakeCalls malware

1) Have a strong antivirus software: Android has its own built-in malware protection called Play Protection, but the FakeCalls malware proves that’s not enough. Historically, Play Protect has not been 100% foolproof at removing all known malware from Android phones. Also avoid clicking suspicious-looking links in messages or emails. The best way to protect yourself from clicking on malicious links that install malware that can access your private information is to have antivirus protection installed on all your devices. This can also alert you to anything. Phishing emails or ransomware scam.

Get my picks for the 2024 best antivirus protection winners for your Windows, Mac, Android and iOS devices.

2) Download apps from trusted sources: It’s important to only download apps from trusted sources like the Google Play Store. FakeCalls malware infects your phone when you download an app from an unknown link. As an Android user, you should only download apps from the Play Store, which has strict controls to prevent malware and other harmful software. Avoid downloading apps from unknown websites or unofficial stores as they pose higher risk to your personal data and device. Also, never trust download links you receive via SMS.

3) Be careful about app permissions: Always review the permissions requested by applications before installation. When an application requests access to features that seem unnecessary to its functionality, it may be a sign of malicious intent. Don’t give any apps Accessibility permissions unless you really need to. Avoid granting permissions that could compromise your personal data.

4) Update your device’s operating system and applications regularly: Storing your software much history Updates are crucial because they often contain security patches for newly discovered vulnerabilities that malware like FakeCalls can exploit.

5) Monitor financial activity regularly: Check your bank and credit card statements frequently for unauthorized transactions. Set up alerts for any account activity that can immediately notify you when suspicious activity occurs.

6) Limit sensitive operations on mobile devices: Whenever possible, avoid making high-risk transactions (such as large money transfers), especially on your mobile device. connected to public or unsecured Wi-Fi. Use a secure computer or contact your bank directly from a verified number.

HIDDEN COSTS OF FREE APPLICATIONS: YOUR PERSONAL INFORMATION

Kurt’s important takeaway

Hackers are constantly evolving their tactics and finding clever ways to hack your devices and scam you out of your hard-earned money. I think Android phone manufacturers and Google need to up their game on security to prevent users from getting hacked frequently. I don’t see the same level of malware affecting iPhones.

How comfortable are you using your mobile phone for financial transactions and what makes you feel safer? Let us know by writing to . cyberguy.com/Contact.

CLICK TO REACH THE FOX NEWS APPLICATION

For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter at: cyberguy.com/Newsletter.

Ask Kurt a question or let us know what stories you’d like us to cover.

Follow Kurt on his social channels:

Answers to the most frequently asked CyberGuy questions:

New from Kurt:

Copyright 2024 CyberGuy.com. All rights reserved.