Your Online Banking Logins Might Be Stolen By These Two Risky Android Applications.

by | Mar 7, 2024

These two Android applications must be immediately be removed from your Android phone.

You can be confident that you are downloading an app from the Google Play Store, which is the safest place to do so. However, this does not imply that such programmes are risk-free to use, as we have seen time and time again.

Two applications, which have since been withdrawn from the Play Store, made it past the standard malware checks and onto tens of thousands of Android phones, according to a post on the Fox-IT blog.

By uploading apps that appeared innocent but really included no dangerous code, the hackers cunningly sidestepped Google’s automated inspections. Only when users initially started using such programmes did they ask for a “upgrade,” which, if accepted by the user, installs the Sharkbot virus.

is one is particularly bad since it specifically targets the password to your bank. The blog claims that the applications are use a fresh iteration of Sharkbot, which was first seen in March 2022, to record your banking password as you put it in. However, it is also intended to capture your bank balance from the app and transfer it, along with whatever login information it has managed to acquire, to the hackers.

The two malicious applications are “Mister Phone Cleaner,” which at least 50,000 users have installed and “Kylhavy Mobile Security,” a fake antivirus program.

th pretend that users need to update themselves in order to trick them into installing the virus. As a result, they don’t have to request any suspicious permissions when you initially install them, and they can, of course, pass all Google Play Store security tests with flying colours.

Google quickly removed the applications, but if you still have any or both of them on your phone, you need to uninstall them immediately.

Additionally, you ought to do a malware check using a trustworthy antivirus programme like Norton Mobile Security or Bitdefender Mobile Security.

Sharkbot’s most recent version is targeting a lot more nations than it was back in March, according to Fox-IT analysts who were able to examine the code:

  • UK
  • USA
  • Australia
  • Italy
  • Spain
  • Portugal
  • Germany
  • Austria
  • Poland

Additionally, they claim that the malware targets specific apps and tries to stop them from displaying a username and password form and instead preventing the user from signing in using their fingerprint. It wouldn’t be able to steal any login information if it didn’t accomplish that.

The article also predicts that there will be additional “campaigns” this year, which will lead to more bogus antivirus and Android “cleaning” applications showing up in the Play Store and employing the same same method to avoid detection.

So, keep an eye out. Just because Mister Phone Cleaner and Kylhavy Mobile Security were taken down doesn’t mean that others of their sort aren’t already on Google Play waiting to be authorised.

Of course, Sharkbot is not the first virus to target your bank information; EventBot carried out a similar attack in 2020.

Android is just as popular a target and just as susceptible to infections as Windows. There isn’t much in the way of built-in security, unlike Windows. Don’t rely on Google’s efforts to remove malicious applications from the Play Store because many still manage to evade its filters.

Additionally, viruses are more than just a nuisance because hackers are always coming up with new and imaginative ways to access your devices and eventually take your identity, money, and other valuables.

Make sure you’re installing the genuine application file whether you’re looking for an antivirus app or one to clean up clutter and free up memory on your phone. Watch out for new applications with five-star customer reviews which would be fake at most of the time. Antivirus is as important for Android phones as it is for Windows computers and laptops.