The cybersecurity company G Datathrough a post on his blog, published an analysis of a new and fearsome malware strain that acts as Banking trojan.
What makes this malicious agent particularly effective is its ability to imitate Chrome, even reproducing the icon of the famous browser. The experts who analyzed the malware have not yet understood which vector is used by cybercriminals for its diffusion, although we are probably talking about spam messages o di phishing.
Once the trojan is installed and started, it asks for access to a series of unusual permissions for a browser, such as requesting to manage phone calls e SMS. Another symptom of this infection could be the aforementioned icon that imitates Chrome.
Compared to that of the browser, in fact, that linked to malware presents a black border around the logo: a small graphic detail that could easily be missed by less attentive users.
How to spot the banking trojan pretending to be Chrome
If a user installs the Trojan and accepts the permission requests, the actual infection is initiated.
This involves the insistent proposition of a pop-up concerning a phantom winning a cash prize. To obtain this amount, however, the victim is asked to enter a telephone number and the number of your own credit/debit card in a specific account. To ensure the cybercriminals’ operational times, the victim is then asked not to uninstall the app for 24 ore subsequent in order to obtain the theoretical prize.
Avoiding threats of this type requires a minimum of attention from users. Avoid downloading apps outside of Google Play Store it is a first step in this direction.
Check the number and content of reviews of an app, can help further reduce risks. Finally, to sleep soundly, adopt a antivirus proven effective may be essential.