Security News > 2023 > March > FakeCalls Android malware returns with new ways to hide on phones
Roid malware 'FakeCalls' is circulating again in South Korea, imitating phone calls for over 20 financial organizations and attempting to fool bankers into giving away their credit card details.
"We discovered more than 2500 samples of the FakeCalls malware that used a variety of combinations of mimicked financial organizations and implemented anti-analysis techniques," reads CheckPoint's report.
"The malware developers paid special attention to the protection of their malware, using several unique evasions that we had not previously seen in the wild."
The FakeCalls malware is distributed on fake banking apps that impersonate large financial institutions in Korea, so victims think they are using a legitimate app from a trustworthy vendor.
Once the victim is interested, the malware initiates a phone call that plays a recording from the bank's real customer support with instructions on getting the loan request approved.
While FakeCalls has stayed in South Korea, the malware could easily expand its operations to other regions if its developers or affiliates develop a new language kit and app overlay to target banks in different countries.
News URL
Related news
- PixPirate Android malware uses new tactic to hide on phones (source)
- Free VPN apps on Google Play turned Android phones into proxies (source)
- Vultur banking malware for Android poses as McAfee Security app (source)
- Malicious Apps Caught Secretly Turning Android Phones into Proxies for Cybercriminals (source)
- Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies (source)
- SoumniBot malware exploits Android bugs to evade detection (source)