Close Menu
Trending
Android

New Android threat sends photos, texts, contacts, hardware data, and more to external servers

thedailyposting.comBy No Comments

[ad_1]

According to Bleeping Computer, a new version of the XLoader malware (also known as MoqHao) is in circulation. Previously, this malware was found in the US, UK, Germany, France, Japan, South Korea, and Taiwan. The malware is spread through SMS text messages that feature shortened URL links, allowing XLoader to launch immediately after installation. This can allow the malware to run undetected in the background while your personal data is stolen.
Fake permission requests appear to come from Google Chrome - new Android threat sends photos, texts, contacts, hardware data, and more to external serversFake permission requests appear to come from Google Chrome - new Android threat sends photos, texts, contacts, hardware data, and more to external servers

Fake permission requests appear to come from Google Chrome

“Malicious activity is automatically initiated while the app is installed,” McAfee said. “We are working to implement mitigation measures to prevent this.”

Another fake permission request - new Android threat sends photos, texts, contacts, hardware data, etc. to external serversAnother fake permission request - new Android threat sends photos, texts, contacts, hardware data, etc. to external servers

Another fake permit application

The malicious app sends permission requests disguised as coming from Google Chrome, asking for permission to send and view SMS (text) messages, and asking for permission to keep Chrome running in the background. And the biggest advantage is the permission to make “Chrome” the default SMS app. With all these permissions, the malware is used to send photos, text messages, contact list, and information about the hardware you are using (including your phone’s unique IMEI number) to a controlling server. . Yes, it’s very scary.

McAfee says the new XLoader malware is even more dangerous than its predecessors because it requires minimal interaction from victims. I have good news. According to an update from McAfee a few weeks ago, Android devices with Google Play Services are protected from this type of malware attack by Google Play Protect, which is enabled by default.

However, there are some things to consider here. Never click on shortened URLs in messages. Also, don’t sideload apps.

[ad_2]

Source link

Related Posts

Leave A Reply