Gastronomic-Paradise

Opening This Faux Chrome Update May Empty Your Bank Account and Expose Your Location

A recently discovered malware masquerades as three well-known Android apps, one of which is Google Chrome.

SymClub
May 1, 2024
1 min read
AutotechAndroid malware
Clicking This Fake Chrome Update Could Drain Your Bank Account and Leak Your Location
Clicking This Fake Chrome Update Could Drain Your Bank Account and Leak Your Location

Attention!

Limited offer

Learn more

Opening This Faux Chrome Update May Empty Your Bank Account and Expose Your Location

ThreatFabric, a security company, has disclosed info about a new Android banking malware named Brokewell. The name comes from its capacity to empty bank accounts. However, it can do much more.

At the moment, this malware is active and pretends to be a Google Chrome update for Android. It even closely mimics the genuine ads Google puts out for its browser.

ThreatFabric alerts that Brokewell features remote-control features and data-stealing functionality. These capabilities are built within the malware instead of relying on a cloud link, which makes it more dangerous to your device's security. Like many other recent Android malware families, Brokewell can also get around the Google-imposed restrictions that prevent sideloaded apps from accessing accessibility services.

A real Google Chrome ad and the phony one that installs Brokewell on your Android device.Credit: ThreatFabricAfter being installed and initially started, Brokewell asks for accessibility service permissions. The malware can then automatically grant itself other permissions, providing it unrestricted access to perform various harmful actions, ThreatFabric cautions.

So far, Brokewell has been observed posing as three popular apps: Google Chrome, ID Austria, and Klarna. ThreatFabric also advises Brokewell can log data from all your apps, making it highly dangerous: It's not only your banking information at risk; the malware can also obtain details like call history, location, and recorded audio.

The emergence of malware apps like Brokewell indicates a concerning future for Android threats. As more bad actors acquire the ability to bypass the restrictions implemented in Android 13, Google will have to devise new methods to secure users. Nevertheless, users will also need to be vigilant about what they install and sideload.

If you have an Android phone at the moment, be careful about what you download, and only install apps from reliable sources. Importantly, if a third-party app asks for accessibility permissions, don't grant them because it might provide open access to your device and the data stored on it.

Read also:

    Source: lifehacker.com

    Attention!

    Limited offer

    Learn more