Cybercriminals don't rest and have devised a new malware for Android devices. In its spread, it has taken credentials from more than 10.000 people.
Researchers at Zimperium zLabs have discovered how this malware works, which spreads and infects users' devices through social engineering attacks. These attacks consist of tricking the user by pretending to be legitimate entities.
In the case of this malware, it disguised itself through ads offering codes to get free access to Netflix or surveys related to football. Then, the user is asked to log in to Facebook, when in reality what is shown on the screen is a fake website. Like this, los delincuentes ya han obtenido las credenciales de Facebook y pueden acceder a toda la información.
Putting numbers to the situation, the 10.000 usuarios afectados se distribuyen alrededor 144 Countries. Respecto a las aplicaciones, available on Google Play, son las siguientes:
- com.luxcarad.cardid: GG Voucher
- com.gardenguides.plantingfree: Vote European Football
- com.free_coupon.gg_free_coupon: GG Coupon Ads
- com.m_application.app_moi_6: GG Voucher Ads
- com.free.voucher: GG Voucher
- com.ynsuper.chatfuel: Chatfuel
- Com.free_coupon.net_coupon: Net Coupon
- com.movie.net_coupon: Net Coupon
- com.euro2021: EURO 2021 Official
La recomendación principal es desinstalar dichas aplicaciones, si alguna vez las hemos tenido instaladas. A más largo plazo, no abrir aquellos enlaces que puedan resultar sospechosos o que nos “regalen” suscripciones. Nadie da duros a pesetas. Generalmente las grandes compañías no ofrecen tan suculentos descuentos.
Fountain: Andro4All
Image: Pixabay