This Android Malware Can Wipe Your Bank Account
Always install apps through the official Google Play Store.
Researchers have identified a new strain of malware, Albiriox, that lets bad actors remotely take over your smartphone. While there are many implications here, the main goal for hackers using Albiriox is to empty your bank accounts and cryptocurrency wallets, all without your knowledge. Here’s how it works.
Albiriox can allows hackers to take over your phone under your nose
Albiriox is what’s known as Malware-as-a-Service, or MaaS. This model allows bad actors to pay for access to the malware, and use it to target individuals around the world. This particular MaaS is both an Android Remote Access Trojan and banking trojan. The idea is, once hackers install the malware on your phone, they don’t just look for passwords or other sensitive information. Instead, they act on your behalf to open your financial apps and transfer funds to their accounts.
Like most malware strains, hackers trick targets into install Albiriox on their devices through dummy applications. These apps are often fake versions of programs the target is already interested in, or designed to intrigue a large number of users. Some attackers have crafted fake Google Play Store pages to deceive users into downloading their apps. After all, if you think you see an app on your device’s official App Store, you’re much more likely to install it.
These apps, however, are not legitimate. When the target downloads the app, it installs the program that launches the Abliriox malware onto the device. Once through, hackers have a live view of your phone, and can control it in real time. Albiriox can cleverly bypass Android’s Accessibility Services, and can overlay fake login screens on top of real apps, to trick you into typing in your credentials. You think you’ve just logged into your bank, but you really just gave your credentials to the hacker. Attackers can even place a black screen on top of the live one, making you think your phone is asleep, when really, hackers are actively stealing your money.
How to protect yourself from Albiriox
You can keep yourself safe from Albiriox the same you do from other forms of malware. Always install your apps directly from your device’s official app marketplace. Don’t follow links to the app store when you can help it, especially if those links come from emails or other messaging apps. Instead, find apps directly through the Play Store, so hackers can’t trick you with a fake app store.
Never install a financial app without verifying the developer or company that makes it. Investigate its app store page, as well: Make sure the description, images, reviews, and number of downloads all makes sense for an app of its caliber. If your “bank’s” app only has a few dozen downloads, poorly-written descriptions, and fake reviews, don’t trust it.
Make sure you check the permissions the app wants from your device before you install it. If it wants access to too much of your phone, especially if those permissions have nothing to do with the function of the app, don’t install it.
Share This
