According to Check Point Research, “Clast82” a malware dropper was spreading from eight malicious apps. The unique thing about this dropper is that it is custom-designed to deliver financial malware. The dropper is not traced by the Google Play Protect.
Android is one of the most used operating systems in the world. The operating system has tons of customisation options baked into it and has an open-source structure in its DNA, this very fact somehow goes against privacy and raises concerns over security. Researchers have released a list of eight dangerous apps that can be a great threat to your privacy.
The dropper installs AlienBot Banker, a variant of malware that remotely injects malicious code into legitimate financial applications. The Clast82 does not stop there, it also installs MRAT, a program that gives third parties remote access to your mobile.
These two programs together can take over your phone and hijack the banking apps, intercept the two-factor authentication (2FA) codes and in no time, can steal your financial data. “Upon taking control of a device, the attacker has the ability to control certain functions, just as if they were holding the device physically, like installing a new application on the device, or even control it with TeamViewer,” researchers said.
The researchers have released a list of eight apps from the Google Play Store that can drain your bank account and even bypass the two-step authentication.
1.Cake VPN (com.lazycoder.cakevpns)
2.Pacific VPN (com.protectvpn.freeapp)
5.QR/Barcode Scanner MAX (com.bezrukd.qrcodebarcode)
6.Music Player (com.revosleap.samplemusicplayers)
8. QRecorder (com.record.callvoicerecorder
Highlight of Malware:
- “Clast82” a malware dropper was spreading from eight malicious apps
- The unique thing about this dropper is that it is custom-designed to deliver financial malware
- The dropper is not traced by the Google Play Protect