New Android malware threat can wipe your bank account
**Beware of Albiriox: A New Malware Threat Targeting Android Users**
Android users need to remain vigilant about the origins of their apps, as a new and alarming type of malware called Albiriox is making waves in the cybersecurity landscape. According to fraud prevention experts at Cleafy, this malware poses a significant threat by allowing malicious actors to gain full remote control over infected devices. Once compromised, users can find their bank accounts drained without ever having to input a password, making it a particularly insidious form of cybercrime. The ease with which Albiriox can infiltrate devices is alarming, highlighting the importance of downloading apps only from trusted sources.
The mechanics of Albiriox are both clever and concerning. Cybercriminals are creating fake Google Play Store download pages for financial applications, which appear legitimate but are hosted on external sites. When users unwittingly click on these deceptive links, they may inadvertently grant the malware permission to enable the “install unknown apps” feature in their device settings. This permission is crucial for the malware to operate, as it allows the installation of harmful software without the user’s knowledge. Once installed, the malware can execute commands remotely, mimicking swipes and clicks as if it were the user themselves. This capability enables the attackers to navigate the device and access sensitive information, ultimately leading to unauthorized transactions and financial loss.
To protect against this threat, users are advised to avoid downloading financial apps from any source other than the official Google Play Store. Sticking to trusted platforms significantly reduces the risk of malware infection. However, it is worth noting that even apps available on the Google Play Store and Apple App Store can harbor malware, as evidenced by recent reports of malicious apps that recorded sensitive user data, including WhatsApp messages and phone calls. Therefore, exercising caution, scrutinizing app permissions, and staying informed about the latest threats are essential steps for Android users looking to safeguard their personal and financial information.
https://www.youtube.com/watch?v=128WYj_x5Qk
Android
users, be careful about where your apps come from.
That’s because there’s a new and very sinister-sounding kind of malware going around on
Google’s
mobile OS, according to the fraud prevention experts at
Cleafy
(per
Android Authority
). Called Albiriox, the malware has been known to infect users’ devices, giving bad-faith actors full remote control over the device, at which point they drain the device owner’s bank accounts without even needing a password.
SEE ALSO:
Android 16 QPR2 arrives: 3 new features to check out
Cleafy goes into the nitty-gritty technical details on how this all works, but a basic summary is that the malware is being hidden in fake (but real-looking) Google Play Store download pages for financial apps on external sites. If you hit the download button on one of these pages, which, again, are not actually in the Play Store proper, you may be letting the malware onto your device. From there, it covertly enables the “install unknown apps” permission in the device settings, at which point the
really
bad stuff gets installed on your device.
From there, the bad actors can fully, remotely control your device without you noticing, performing actions like swipes and clicks from wherever they are. At that point, the hard part is over, and they can get to draining your bank account. It sounds like the best way to avoid this is to simply not download any weird financial apps from places that aren’t the Play Store. If you stick to downloading apps straight from the Play Store app, you should be fine.
That said, even apps on the official Apple App Store and Google Play Store can contain malware, as we’ve reported previously. Last month, we reported on
six malicious Android apps
that were recording user data, including WhatsApp messages, phone calls, and even background audio.
