Security News > 2021 > November > New Android malware targets Netflix, Instagram, and Twitter users
A new Android malware known as MasterFred uses fake login overlays to steal the credit card information of Netflix, Instagram, and Twitter users.
This new Android banking trojan also targets bank customers with custom fake login overlays in multiple languages.
Malware analyst Alberto Segura also shared online a second sample one week ago, pointing out that it was used against Android users from Poland and Turkey.
After analyzing the new malware, Avast Threat Labs researchers discovered APIs provided by the built-in Android Accessibility service to display the malicious overlays.
The malicious use of the Accessibility service is not something new since malware creators have been using it to simulate taps and navigate the Android UI install their payloads, download and install other malware, and execute various operations in the background.
One of them is that the malicious apps used to deliver the malware on Android devices also bundle the HTML overlays used to display the fake login forms and harvest the victims' financial info.
News URL
Related news
- Germany sinkholes BadBox malware pre-loaded on Android devices (source)
- Germany blocks BadBox malware loaded on 30,000 Android devices (source)
- Android malware found on Amazon Appstore disguised as health app (source)
- BadBox malware botnet infects 192,000 Android devices despite disruption (source)
- New FireScam Android malware poses as RuStore app to steal data (source)
- New FireScam Android data-theft malware poses as Telegram Premium app (source)
- FireScam Android Malware Poses as Telegram Premium to Steal Data and Control Devices (source)
- DoNot Team Linked to New Tanzeem Android Malware Targeting Intelligence Collection (source)