Home Sms code android: Android users, the new ‘Escobar’ can hack your smartphones: how and...

android: Android users, the new ‘Escobar’ can hack your smartphones: how and tips to stay safe

9
0

The Aberebot android the Trojan is back with a new name and new features. According to BleepingComputer, the Trojan horse or banking virus can now fly Google Authenticator multi-factor authentication codes. Other new features/capabilities include taking control of infected Android devices using VNC, recording audio and taking photos, while expanding the set of applications targeted for information theft. identification.
BleepingComputer claims that while using KELA’s DARKBEAST cyber-intelligence platform, he found a post on a Russian-speaking hacking forum where developer Aberebot is promoting its new version as “Escobar Bot Android Banking Trojan “. The results were then allegedly corroborated by researchers from MalwareHunter, McAfee and Cyble.
How? ‘Or’ What Aberebot/Escobar Trojan may harm Android smartphone users
Like most banking Trojans, Escobar displays overlaid login forms to hijack user interactions with online banking apps and websites. The main goal of the virus is to steal enough information to allow cybercriminals to take control of victims’ bank accounts and perform unauthorized financial transactions.
Cybercriminals reportedly expanded the set of targeted banks and financial institutions to 190 entities from 18 countries in the latest release. The report does not share their names. The virus asks for 25 permissions, 15 of which are used for malicious purposes. Examples include accessibility, audio recording, reading SMS, read/write storage, getting account list, disabling key lock, calls and location access accuracy of the device.
“Everything the malware collects is uploaded to the C2 server, including SMS call logs, key logs, notifications, and google Passcodes,” the report says. This would be enough to help criminals overcome the two-factor authentication (2FA) defense when taking control of online bank accounts. 2FA codes are usually transmitted by SMS or are stored and alternated in tools such as Google. Authenticator as it is considered more secure as it is not susceptible to SIM card swapping attacks. However, Google Authenticator codes are still not protected against malware that infiltrates the user space.
How Android Users Can Stay Safe
In general, Android users can minimize the risk of their smartphone getting infected by following these important tips:
* Do not install APK outside of Google Play Store
* Ensure Google Play Protect is enabled on their device
* When installing a new app from any source, watch out for unusual permission requests and monitor the app’s battery and network consumption statistics for the first few days to identify any suspicious activity.