Home Google Voice Phishing: This Android Malware Connects You with Hackers via Phone Calls

Voice Phishing: This Android Malware Connects You with Hackers via Phone Calls

146
0

A new and sophisticated Android malware known as Fakecall is manipulating your phone connections. While you might think you are making a call to your bank, you could actually be speaking with a hacker. Recently, the research team zLabs from Zimperium provided insights into how this insidious malware operates.

How Fakecall Operates: A Closer Look

According to Zimperium, Fakecall employs a technique referred to as “Vishing” (Voice Phishing). The primary objective of this method is to deceive victims into revealing sensitive information through fraudulent phone calls and voicemails.

The researchers explain, “Fakecall is an extremely sophisticated Vishing attack that utilizes malware to gain near-complete control over a mobile device, including intercepting both incoming and outgoing calls.” Victims are misled into calling “fraudulent phone numbers controlled by the attacker.”

The attack begins with the intended victim being lured into downloading an APK file via a phishing scheme. This Android application installation file serves as a conduit for installing the malicious payload on the device.

Post-Installation: The Risks Involved

Once installed, the app prompts users to set it as their default calling application, allowing it to manage incoming and outgoing phone calls. This opens up a range of alarming scenarios.

  • As the default phone application, the malware can replace the legitimate number with a fraudulent one, redirecting users to malicious targets.
  • Furthermore, it has the capability to intercept calls and establish unauthorized connections. For instance, if you attempt to contact your bank after the malware installation, the app displays the correct number but reroutes the call to the hacker.

Fakecall: A Familiar Threat with New Twists

The Fakecall malware was initially reported by Kaspersky back in 2022. However, Zimperium has uncovered a new variant that boasts even more advanced functionalities. These enhancements include monitoring the Bluetooth and screen status, capturing information displayed on the screen, and executing commands on infected devices.

READ :  Amazon Takes on Nvidia: A Game-Changing AI Chip in the Works!

Importantly, this malware is not available in the official Google Play Store, which actively blocks it through its Protect feature. Therefore, the only way to inadvertently install it is by downloading apps from unverified external sources.

Protect Yourself from the Threat of Fakecall

To safeguard yourself against such threats, it is crucial to adopt best practices for mobile security:

  • Be cautious with downloads: Only install applications from trusted sources.
  • Stay informed: Keep an eye on the latest cybersecurity threats and updates.
  • Enable security features: Utilize available security measures on your devices to enhance protection.

As mobile technology continues to evolve, so too do the methods employed by cybercriminals. Awareness and proactive measures are your best defense against sophisticated malware like Fakecall.

4.8/5 - (5 votes)

As a young independent media, Web Search News aneeds your help. Please support us by following us and bookmarking us on Google News. Thank you for your support!

Follow us on Google News