Fake Chrome App Anchors Rapidly Worming ‘Smish’ Cyberattack

2021-05-11 18:01

A new Android malware that impersonates the Google Chrome app has spread to hundreds of thousands of people in the last few weeks, according to researchers.

The fake app is being used as part of a sophisticated hybrid cyberattack campaign that also uses mobile phishing to steal credentials.

If they fall for it and click, a message comes up asking them to update the Chrome app.

The fake Chrome app is used as a propagation method: Once installed, it sends more than 2,000 SMS messages per week from infected devices, Pradeo found.

The malware hides on mobile devices by using the official Chrome app's icon and name, "But its package, signature and version have nothing in common with the official app," according to the analysis.

"For mobile banking users in particular, there's high risk of encountering a trojanized app. The recent Financial Services Threat Report from Lookout showed that almost 20 percent of mobile banking users were exposed to a trojanized app when trying to log into their accounts."

News URL

https://threatpost.com/fake-chrome-app-worming-smish-cyberattack/166038/

#chrome #cyberattack

News URL

Related news