The Android Brazking Trojan is back to steal your money

Time: 29/Jan By: kenglenn 429 Views

The malware alarm for all Android devices has taken place for a few hours.This was launched by some IBM researchers engaged in finding the different threats that can seriously endanger the devices and privacy of users.Unfortunately, the Android Brazking Trojan is back and the new version seems to be much more advanced than the previous one.The goal of this virus is to appropriate all the victim's sensitive data to reach access to your current account through the theft of bank credentials.Let's discover all the details together and how to defend ourselves from this terrible danger.

Android Brazking is back more dangerous than before

In the official report published by IBM it turns out that Android Brazking is back and the new version seems to be decidedly more advanced and therefore more dangerous than the previous one.Now the malware is even stronger and accesses the system authorizations without major problems.But where does the attack begin from?In other words, how is our device infected?This is explained by IBM researchers:

Il trojan Android BrazKing è tornato per rubare i vostri soldi

“The initial infection vector is a Phishing message with a URL that leads to a website that says the device is about to be blocked due to an alleged lack of security.It requires the user to 'update' the operating system by touching a button on the page.The site uses HTTPS, making it more credible.By touching the button, the download of Brazking starts.The app is downloaded via the browser and then installed by the package manager.Because this happens, the user must approve the download of apps from unknown sources.After the initial download, the malware tries to have the user approve the authorizations on the pretext of a Google requirement ".

The method to convince the user to approve the android brazking's request for access is therefore to impersonate a Google update.In this way the victim believes he updates his device, while in the reality of the facts he is opening the doors to a dangerous malware.Once you have access by acting in the background can simulate the touches of the screen, access contacts and text messages by capturing any information.In the case of infection it is good to restore the device to the factory settings.

For now it seems that this malware, which falls within the category of the banking trojans of Android, is still in the development phase given the different differences that the researchers have identified in the attacks examined.However, it is always good to inquire and immediately keep your guard and the level of security high.

Fonte: IBM Security Intelligence