Android users are facing a serious threat as multiple apps have been found to contain dangerous banking malware, causing alarm among smartphone users. These apps, downloaded by millions, were all accessible on the Google Play Store, making it easier for them to spread.
The discovery of this malware, known as Anatsa, was made by Zscaler’s ThreatLabs team. Anatsa, which emerged in 2020, is capable of stealing credentials, keylogging, and facilitating fraudulent transactions.
What sets this malware apart is its stealthy method of infiltration. Anatsa uses a deceptive tactic where a seemingly harmless application on the official Google Play Store acts as a decoy, only to later download a malicious payload from its command-and-control server, evading detection mechanisms and infecting devices.
Apart from Anatsa, other malicious applications have been identified, including the Joker bug, which can perform various invasive actions such as reading and sending text messages, capturing screenshots, making unauthorized calls, and pilfering contact lists. These apps were reported to Google by ThreatLabz.
To safeguard against such threats, Android users are advised to scrutinize app permissions, verify their alignment with the app’s functions, check reviews, and research developers before installation. Enabling Google Play Protect is recommended as it monitors apps and devices for malicious behavior, conducts safety checks on downloads, and can remove harmful apps from devices.
