TikTok denies that hackers leaked users sensitive data
A hacker has posted on a hacking site that claims to have...
According to the most recent reports, the notorious Android banking malware SharkBot has resurfaced on the Google Play Store by disguising itself as a false antivirus and cleaning app.
In a report, Fox-IT of NCC Group said:
“This new dropper doesn’t rely on accessibility permissions to automatically perform the installation of the dropper Sharkbot malware. Instead, this new version asks the victim to install the malware as a fake update for the antivirus to stay protected against threats.”
The bad news is that the apps at issue, which include Mister Phone Cleaner and Kylhavy Mobile Security, have over 60,000 installations combined.
Furthermore, they are intended for users in Spain, Australia, Poland, Germany, the United States, and Austria.
According to the claims, the droppers are supposed to deliver a new version of SharkBot called V2 by Dutch security firm ThreatFabric.
They have a refactored codebase, an updated command-and-control (C2) communication system, and a domain generation algorithm (DGA).
Other notable information-theft capabilities worth mentioning are:
Alberto Segura and Mike Stokkel, researchers, stated:
“Until now, SharkBot’s developers seem to have been focusing on the dropper in order to keep using the Google Play Store to distribute their malware in the latest campaigns.”
Catch all the Sci-Tech News, Breaking News Event and Latest News Updates on The BOL News
Download The BOL News App to get the Daily News Update & Follow us on Google News.