According to what is reported on the site BleepingComputersome researchers of McAfee have prepared a report that outlines a new and fearsome threat to users Android.
We are talking about an updated version of the malware XLoaderspread online by a group of cybercriminals known as Roaming Mantis. The new variant uses the classic SMS as the main distribution channel, which contain a short URL within them. By selecting the link, the user is directed to a web page, with the download of an APK file of a mysterious mobile app.
Once the APK is installed, the software prompts the user to become thedefault SMS manager app and then, to effectively obscure oneself, one pretends Chrome (with the letter “r” in italics).
A very worrying aspect of malware is its ability to act autonomously, without the need for user interaction. L’infostealer in question, once activated, will draw on sensitive data such as password, SMS, Photo, contacts of address book and much other information.
XLoader works through SMS and short URLs: how to avoid any type of risk?
Countering XLoader is possible, with a little care. For example, it is essential to have active Google Play Protect, capable of stopping this type of infection in its tracks. Also the use of antivirus specific to the Android environment can be an excellent method to avoid unpleasant surprises.
XLoader, for its part, is now a well-known name among cybersecurity experts. This is malware
The phenomenon of infostealers, on the other hand, is taking on very worrying dimensions. Just a few days ago, for example, malware of this type targeted the oil and gas industry, alarming a sector that, as we well know, is of vital importance in the context of our society.