On the Google Play Store, the cybersecurity analysts at Dr.Web have recently witnessed a major tip in trojan infiltration. Not only that even they have also detected one application that has more than 500,000 installs and steals users’ data from the notifications.
The threat actors use these malicious applications that belong to a family of trojan malware to perform several malicious tasks like:-
Here below we have mentioned all the trojans tracked by the cybersecurity experts at Dr.Web:-
Among the detected Trojan malware, Android.Spy.4498 trojan is the one that is traced with high activity on the Google Play Store. The Android.Spy.4498 trojan is the unofficial modifications (mods) of WhatsApp messenger such as:-
The threat actors are spreading these fake malicious WhatsApp mods through several mediums like:-
Moreover, it has been also detected that all these above-mentioned malicious mods offer multiple utility features, and here they are:-
Along with this trojan, multiple numbers of trojan malware were detected on the Play Store by the experts of Dr.Web security firm. On the Google Play Store, the attackers are spreading threats under the hood of multiple genuine-looking applications.
Types of applications scattered by the threat actors on Google Play Store:-
For diverting the stolen money from the victim’s account to the scammer’s bank account, the attacker tricks the user to deposit money for trading in the fake investment apps.
While in the case of other applications, the attackers trick the users into signing up for the costly subscriptions to steal their money.
Here the threat actors abuse the Flurry stat service to seize the notifications from the Google Play Store and the Samsung Galaxy Store apps.
For mitigations, the cybersecurity researchers have recommended:-
You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and hacking news updates.
Criminal IP, a renowned Cyber Threat Intelligence (CTI) search engine developed by AI SPERA, has recently signed a technology partnership…
Hackers very frequently target the finance and insurance sectors due to the large volumes of sensitive data that they own.…
Tycoon 2FA, a recently emerged Phishing-as-a-Service (PhaaS) platform, targets Microsoft 365 and Gmail accounts, which leverage an Adversary-in-the-Middle (AitM) technique…
Logicalis, the global technology service provider delivering next-generation digital managed services, has today announced the launch of Intelligent Security, a…
Cacti, the widely utilized network monitoring tool, has recently issued a critical security update to address a series of vulnerabilities,…
Nmap's version 7.95 emerges as a testament to the relentless efforts of its development team, spearheaded by the renowned Gordon…