If you tend to watch sports and movies through third-party streaming apps, cybersecurity experts have warned that it could cost you money and personal details.
This is after the emergence of a malicious fake VPN application, which is being used to steal sensitive banking details, effectively draining victims' accounts.
The app in question is disguised as a popular streaming app and offers many users a chance to access films and live sports for free.
However, behind the entertainment promise is a dangerous malware known as Klopatra, a new Android Remote Access Trojan (RAT), which grants cybercriminals full control of infected devices.
According to a report by Digwatch, over 3,000 devices across Europe have been affected, and experts fear the crime could seep into markets like Kenya, where the popularity of third-party streaming apps is growing.
It is believed that from the 3,000 devices, at least 1,000 individuals have already incurred heavy financial losses from the scam.
How it works
Once it has been installed on an Android device, the malware tricks users into enabling Android’s Accessibility Services. This feature is meant to help users with disabilities to easily navigate their smartphones easily.
With this access, the attackers are able to read everything on the victim's screen and perform actions separately and remotely, including logging into banking apps, accessing passwords and transferring funds.
The firm which uncovered the scheme warns that the malware operates silently in the background, making it practically unnoticeable.
Researchers believe the campaign originated from Turkey and has a growing reach, raising alarm among digital security experts globally.
One of the most concerning aspects of the malware is that it exploits legitimate Android features to bypass traditional security measures.
The campaign is believed to have originated from Turkey, and its growing reach has raised alarms among digital security experts worldwide.
What makes this threat particularly dangerous is that it exploits legitimate Android features to bypass traditional security measures.
To mitigate risks, Android users are advised to delete any suspicious streaming or VPN apps, especially if they are not from verified sources like the Google Play Store.
Further, users should regularly review which apps have been granted Accessibility permissions, such that only trusted apps can access sensitive features.
Finally, experts recommend using reputable antivirus software to stay up to date about new security threats, and once you suspect your data may have been compromised, immediately disconnect from the internet and change all your passwords.
