Android: fake customer service over the phone wants to trick you into installing malware

New Android malware attacks users. According to an investigation by Cleafy, a virus called Brata is currently seeking to empty the bank accounts of Internet users residing in Europe. To allay the mistrust of victims, hackers do not hesitate to pass themselves off as a telephone customer service.

Cleafy’s IT security experts warn Android smartphone users: a Trojan horse called Brata has just been spotted in Europe. This malware is designed to steal the bank details of its victims. Before reaching European phones, the malware wreaked havoc in Brazil. He was then hiding in infected applications that bypassed the security measures of the Google Play Store.

Identified in Italy in June 2021, the Brata malware is now spreading by through fake SMS. These messages claim to come from a trusted company, such as a bank. “This SMS tries to convince the victim to download an anti-spam application, with the promise of being contacted soon by a banking operator”, explains Cleafy.

Be careful, the Android Brata malware seeks to loot your smartphone

The users are then relayed on a page which imitates the interface of their bank. This bogus website will ask victims to download an APK file, which supposedly contains an anti-SPAM app. Instead, the file contains the Brata malware. To ensure that Internet users install the application on their smartphone, hackers will pretend to be bank customer service.

On the phone with the victim, the hackers will do everything to ensure that the Brata virus is installed on the phone. In particular, they will offer their help with the installation in order to deceive the vigilance of the most gullible users. Once the malware has been installed on the terminal, and Android permissions have been granted, they can take full control of the device. As a reminder, permissions determine which applications can call on certain specific features of the phone. We advise you to tune them sparingly.

Also read: 300,000 Android smartphones have installed apps infected with malware through the Play Store

That’s when the pirates behind Brata get access to your bank details and a possible code by SMS sent as part of a double-factor authorization. With this data, they can take over the contents of your bank account. We invite you to beware of links received by SMS. In case of doubt, do not hesitate to contact the customer service of your bank to attest to the veracity of a message.