We use your sign-up to provide content in ways you’ve consented to and to improve our understanding of you. This may include adverts from us and 3rd parties based on our understanding. You can unsubscribe at any time. More info

SharkBot is back and as dangerous as ever. This incredibly malicious malware, which is fully capable of stealing login and banking credentials, has made an unwelcomed return to the Google Play Store with thousands already thought to be at risk from attack.

Cyber criminals have used a sneaky tactic to get around Google’s robust security as the apps in question only become infected with SharkBot after they’ve been downloaded onto a device.

Once installed, this bug can siphon money out of bank accounts and overlay fake login pages when it detects a user is trying to access online services allowing hackers to steal user names and passwords. SharkBot last made an appearance back in March and now two applications are once again using it to attack Android fans.

As discovered by the team at Fox-IT, apps called Mister Phone Cleaner and Kylhavy Mobile Security have both been found to be infected with the malware.

Nearby Share: Android explain how mobile users can use feature

Google has since banned these apps but anyone who has already downloaded them needs to act fast if they don’t want to become the next victim of cyber crime.

Speaking about the attack, Fox-IT’s Alberto Segura said: “This new version asks the victim to install the malware as a fake update for the antivirus to stay protected against threats. We have found two SharkbotDopper apps active in Google Play Store, with 10K and 50K installs each of them.

“On the 22nd of August 2022, Fox-IT’s Threat Intelligence team found a new Sharkbot sample with version 2.25; communicating with command-and-control servers mentioned previously. This Sharkbot version introduced a new feature to steal session cookies from the victims that logs into their bank account.”

If you think you may have downloaded this app then make sure you delete it without delay and check any permissions you may have granted it.

It’s also worth checking your bank account for any strange transactions.

HOW TO DELETE APPS ON ANDROID

• Open the Google Play Store app.

• At the top right, tap the profile icon.

• Tap Manage apps and devices. Manage.

• Tap the name of the app that you want to delete.

• Tap Uninstall.

Source: Read Full Article