I recently discussed a type of banking malware that quietly steals sensitive information like bank credentials and passwords. Now there’s another concerning threat: new malware called Albiriox that targets Android devices. This malware allows remote attacks and is available to hackers through a subscription service.
Researchers from Cleafy, an online fraud prevention company, have revealed Albiriox, which is distributed using “dummy” APKs. These fake apps trick users into thinking they are downloading legitimate software. One common tactic is creating counterfeit listings on the Google Play Store. This makes victims believe they’re using safe apps when they’re actually not. Hackers also promote fake offers, gathering contact information to spread these malicious APKs via messaging apps like WhatsApp and Telegram.
Interestingly, this trend has been mainly observed in Russia and nearby regions. Many believe it has gained momentum as a Malware-as-a-Service (MaaS) on dark web forums. Cleafy has reported intercepting over 400 fake apps that target sectors like banking, fintech, and cryptocurrency. These apps allow hackers to manipulate financial transactions directly, bypassing the need for user credentials.
To protect yourself, be vigilant about any unusual apps you install, especially those related to finances. Always download apps directly from the official Google Play Store. Make sure your device’s firmware is updated to patch vulnerabilities. Google has recently released its December Android Security Bulletin with crucial updates.
As a tip, you can use tools like mobile security apps for an extra layer of protection. Experts suggest keeping an eye on app permissions and questioning unfamiliar applications. With vigilance and proper security practices, you can safeguard your personal data from these rising threats.
Source link
