Beware of Android Phone PIN Hacking Fraudsters, Instantly Emptying Accounts
Jakarta, CNBC Indonesia –Cybersecurity researchers have discovered a new variant of the TrickMo malware that threatens Android users. The malware is said to be able to steal device unlock codes such as PINs or password patterns.
Analysis from Zimperium found more than 40 variants of TrickMo. Their functions are almost the same, such as OTP interception, screen recording, data theft and remote control.
Trickmo, known as a Banking Trojan, has evolved to steal cellphone unlocks. The malware will imitate the screen display so that victims can enter their credentials.
Zimperium found the malware hosting a fake UI as an external HTML page. The victim enters the unlock details, then the data is sent along with a unique identifier to the perpetrator.
In this way, the perpetrators can control the device. Even if the victims lock their cellphones, quoted from Android Headline, Wednesday (10/15/2024).
The stolen data is not only related to financial information, so that unauthorized transactions can be made and accounts can be drained. However, other victim credentials can also be accessed to break into other resources.
Malware targets Android devices in a number of countries, starting from Canada, the United Arab Emirates, Turkey and Germany.
To avoid becoming a victim of TrickMo, the first step that needs to be taken is to regularly update the operating system and applications.
System updates allow patching of security vulnerabilities. Including those exploited by the malware.
Android phone users are also prohibited from downloading applications from untrusted sources. Because these applications have the potential to carry hidden malware that will endanger devices and personal information.
Don’t forget to use a security solution. Especially one that offers real-time threat detection and response, which will block dangerous malware.
SOURCE : CNBC INDONESIA