Security News > 2021 > December > Android banking trojan spreads via fake Google Play Store page
The actors have set up a page that looks very close to Android's official Google Play app store to trick visitors into thinking they are installing the app from a trustworthy service.
The malware pretends to be the official banking app for Itaú Unibanco and features the same icon as the legitimate app.
Google Play Store apps are installed through the store interface, never asking the user to download and install programs manually.
Researchers at Cyble analyzed the malware, finding that upon execution, it attempts to open the real Itaú app from the actual Play Store.
If you want to enjoy the convenience of mobile e-banking, make sure to install the app from the bank's official website or the Google Play Store.
Finally, regularly check and ensure that Google Play Protect is enabled on your Android device.
News URL
Related news
- Rocinante Trojan Poses as Banking Apps to Steal Sensitive Data from Brazilian Android Users (source)
- Google Removing Poor-Quality Android Apps From Play Store to Boost Engagement (source)
- TrickMo Android Trojan Exploits Accessibility Services for On-Device Banking Fraud (source)
- Android malware 'Necro' infects 11 million devices via Google Play (source)
- New Octo2 Android Banking Trojan Emerges with Device Takeover Capabilities (source)
- Fake WalletConnect app on Google Play steals Android users’ crypto (source)
- Google: Gemini AI for Android processes sensitive data locally (source)
- Google says it's focusing on privacy with Gemini AI on Android (source)
- Hackers steal banking creds from iOS, Android users via PWA apps (source)
- Google backports fix for Pixel EoP flaw to other Android devices (source)