Passwords used to be the de facto security method for online websites and services. However, it is hardly perfect. People are lazy and often resort to reusing passwords or choosing ones that are easy to remember, like “123456,” which makes a hacker’s job a lot easier. Two-factor authentication is a step up in security, but unfortunately, the Brokewell Android malware can bypass that easily too.
Brokeware malware has made its way onto Android
In a report shared by researchers at cybersecurity company, Bitdefender, they have revealed that cybercriminals are spreading the Brokewell malware through Android via fake TradingView ads.
For those who have never invested into the stock market or digital assets like cryptocurrency, TradingView is a platform that offers users access to charts and financial analysis tools. This helps traders make decisions on when to buy or when to sell, check prices, and more.
It is one of the most popular platforms, which is why criminals are creating fake ads to target their victims. According to the report, the campaign has been running since at least July 22 through an estimated 75 localized ads. The ads themselves are designed to look legit. But what’s scary is its precision.
When users see the ad and click on it on the desktop, it leads to harmless content. However, click on the ad on an Android device and it’s a different story. Users are redirected to a website that mimics the original TradingView site that prompts users to download an APK file. However, this fake app is actually an advanced version of the Brokewell malware.
What happens if you’re infected?
When your device has been infected, all sorts of terrible things take place in the background. The malware is capable of scanning for BTC, ETH, USDT, and bank account numbers. It can steal accounts by overlaying fake login screens. It can also record screens, keystrokes, steal cookies, and more. What’s even more alarming is that it can even steal and export codes from Google Authenticator. This would essentially render two-factor authentication moot.
If anything, this makes sense that Google is making it harder for users to sideload apps in a future version of Android. At least with more restrictions in place, it would make it harder for criminals to trick users into installing apps or downloading APKs outside the Play Store.
#Android #Users #Targeted #Brokewell #Malware #Outsmarts #2FA
