Android phone users who use Google Chrome as their main browser are being warned about a serious piece of malware currently circulating that has the potential to drain bank accounts.
Analysts at ThreatFabric recently discovered a new virus called “Brokewell” that has extensive device takeover capabilities. The threat intelligence firm discovered a fake browser update page designed to install an Android application. Screenshots of the two browsers showed how difficult it is to detect the scam.
According to the security firm, it also poses a “significant threat to the banking industry” as it allows hackers remote access to all assets available through mobile banking.
“The Trojan appears to be under active development, with new commands being added almost daily,” they explained.
Brokewell is reportedly a common modern banking virus that has both data theft and remote control capabilities built into the malware. It uses overlay attacks, a common Android banking malware technique that involves displaying a fake screen on a target application to capture user information.
Experts found that the malware, which copied a fake Google Chrome update, was also used alongside Klarna, a well-known “buy now, pay later” financial service, and a digital authentication application from Austria.
After stealing this data, the hackers can launch a device takeover attack using remote control capabilities. The malware performs screen streaming and provides the attacker with the ability to touch, swipe, and click on various elements.
ThreatFabric warns about the likely development and daily updates of the Brokewell malware, which may be offered as a rental service on underground channels. It is emphasized that only robust, multi-layered fraud detection systems can effectively counter this malware, which poses significant risks to customers of financial institutions.
How do I know if an app contains malware or is a fake app?
Cybersecurity company Kaspersky recommends taking a number of precautions before downloading an app.
- Delete it
- Restart your phone
- Running an antivirus program
- Report the fake app to the appropriate app store to protect others
Other measures you can take to protect yourself from fake apps include:
- Think carefully before downloading apps and only choose apps that you find truly useful
Prioritize official app stores when downloading apps - If you are looking for a specific app, use a trustworthy search engine to go to the authentic version
- For popular apps, visit the developer’s official website and find the relevant link
- Always pay careful attention to app details – such as developer identity, user ratings and download numbers – to avoid fake or malicious apps
- Avoid clicking on links that offer incredible promises
- Android users should be wary of unexpected text messages, alerts, or unusual requests from seemingly familiar people – so proceed with caution
- Be sure to read the fine print and understand the permissions required by each app you download
- Also, familiarize yourself with the security features of your mobile devices.
Featured image: ThreatFabric