Updated Android malware can intercept calls you make to your bank

Do you remember those TV shows where the villain is defeated in one season, but comes back even stronger in the next? Think Stranger Things on Netflix. The malware we’re talking about here is just that. It’s called FakeCalls, and every time researchers figure out how it infects devices, it evolves with new ways to hide.

Earlier this year it was reported that it was impersonating major financial institutions, and now security researchers have discovered that the malware has undergone yet another update. It can even intercept the calls you make to your bank using your Android phone.

Enter the $500 CYBERGUY Gift Card Sweepstakes

What you need to know

FakeCalls is a banking trojan that focuses on voice phishing, where victims are tricked into making fraudulent calls impersonating banks and asking for confidential information. Previous versions did this by prompting users to call a bank from an app that pretended to be a financial institution, according to A bleating computer. However, the latest version analyzed Cimperiumsets itself as the default call handler.

The default call handler manages incoming and outgoing calls, allowing users to answer, reject, or initiate calls. Granting these permissions to malware, as you can imagine, carries serious risks.

When the user gives the app permission to set itself as the default call handler, the malware gets the green light to intercept and interfere with outgoing and incoming calls. It even shows a fake call interface that looks just like a real Android dialer, complete with trusted contact information and names. This level of deception makes it very difficult for victims to see what is going on.

“When a compromised individual attempts to contact their financial institution, the malware redirects the call to a fraudulent number controlled by the attacker,” explains a new Zimperium report. “The malicious app tricks the user by presenting a convincing fake user interface that appears to be a legitimate Android call interface showing a real bank phone number.”

“The victim will be unaware of the manipulation as the fake malware interface will mimic the real banking experience, allowing the attacker to obtain sensitive information or gain unauthorized access to the victim’s financial accounts,” the report added.

BANKING TROJAN FOR ANDROID IS DEVELOPING TO AVOID DETECTION AND HIT WORLDWIDE

Malware can also steal your data

This malware not only intercepts your calls but can also steal your data. It gets access to Android’s accessibility permissions, which effectively gives it the freedom to do whatever it wants. The malware developer has also added several new commands, including the ability to start a live broadcast of the device’s screen, take screenshots, unlock the device if it’s locked, and temporarily disable automatic locking. It can also use accessibility features to simulate pressing the Home button, delete images specified by the command server, and access, compress, and download photos and thumbnails from storage, especially the DCIM folder.

BANKING TROJAN FOR ANDROID STEAL YOUR DATA UNDER GOOGLE PLAY

6 Ways to Protect Yourself from FakeCalls Malware

1) Have powerful antivirus software: Android has its own built-in malware protection called Play Protect, but the FakeCalls malware proves it’s not enough. Historically, Play Protect has not been 100% reliable in removing all known malware from Android phones. Also, don’t click on any links in messages or emails that look suspicious. The best way to protect yourself from clicking on malicious links that install malware that can access your personal information is to install antivirus protection on all your devices. It can also alert you to any phishing emails or ransomware scams.

Get my pick of the best 2024 antivirus winners for your Windows, Mac, Android, and iOS devices.

2) Download programs from reliable sources: It’s important to only download apps from trusted sources like the Google Play Store. FakeCalls malware infects your phone when you download the app from an unknown link. As an Android user, you should only download apps from the Play Store, which is rigorously screened for malware and other malicious software. Avoid downloading apps from unknown websites or unofficial stores as they pose a greater risk to your personal data and device. Also, never trust download links you receive via SMS.

3) Be careful with program permissions: Always check the permissions requested by apps before installing. If an app requests access to features that don’t appear to be necessary for it to function, this may be a sign of malicious intent. Don’t grant accessibility permissions to any apps unless you really need it. Avoid granting permissions that could compromise your personal data.

4) Update your device’s operating system and apps regularly: Storage of Your Software to date is crucial because updates often include security fixes for newly discovered vulnerabilities that can be exploited by malware like FakeCalls.

5) Regularly monitor financial activities: Check your bank and credit card statements frequently for unauthorized transactions. Set up alerts for any account activity that can notify you immediately of suspicious activity.

6) Limit confidential transactions on mobile: If possible, avoid high-risk transactions (such as large money transfers) on your mobile device, especially if you are in public or connected to an unsecured Wi-Fi network. Use a secure computer or contact your bank directly using a verified number.

HIDDEN COSTS OF FREE PROGRAMS: YOUR PERSONAL INFORMATION

Kurt’s main information

Hackers are constantly improving their tactics and finding clever ways to hack your devices and scam you out of your hard-earned money. I really think Android phone manufacturers and Google need to step up their security game to protect users from such frequent hacks. I don’t see the same level of malware affecting the iPhone.

How comfortable are you with using a mobile phone for financial transactions and what would make you safer? Let us know by writing to us at Cyberguy.com/Contact.

CLICK HERE TO GET THE FOX NEWS PROGRAM

For more of my tech tips and security alerts, subscribe to my free CyberGuy Reports newsletter by going to Cyberguy.com/Newsletter.

Ask Kurt a question or let us know what stories you’d like us to cover.

Follow Kurt on his social channels:

Answers to CyberGuy’s most popular questions:

New from Kurt:

Copyright 2024 CyberGuy.com. All rights reserved.