Keeping your devices updated and following Google’s recommended security practices can make a difference.
In the vast smartphone ecosystem, Android stands out as the most used operating system in the world, offering access to a myriad of features and apps that improve the lives of millions of people every day. On the other hand, however, this great popularity also makes it a privileged target for cyber attackswith new threats constantly emerging to exploit vulnerabilities and trick less careful users.
The malware problem on smartphones gets worse when you consider that many of us carry out different types of daily operations with these devices, including those related to personal finance. The presence of banking service app on our smartphones is of great interest to hackerswho look for all the ways to carry out frauds and scams against the most unaware users.
The fake Android update that can steal all the user’s savings
Recently, several cybersecurity collectives have warned users about the circulation of malware Brokewell, a hitherto unknown malicious program which is quickly becoming a significant threat to Android users.
This malware is particularly insidious because It disguises itself as an update for Google Chrome, the default browser on many Android devices. Users are tricked by a well-designed web page proposing a software update, which appears legitimate and harmless.
Once installed, however, this update releases the Brokewell malwarewhich has the ability to access banking applications and intercept sensitive information. In addition to this, it can record every action performed on the device and transmit this data to an external server, thus allowing attackers to steal identities, financial and personal data.
One of the most dangerous techniques employed by Brokewell is the creating an overlay screen That appears in front of legitimate apps. This dummy screen captures login details when users try to log in to their banking apps, believing they are using the authentic version.
What makes this virus even more dangerous is the fact that the Brokewell dropper (i.e. the app that is initially downloaded and then proceeds to install the malware) manages to bypass Android accessibility protections designed to prevent sideloading attacks.
To protect themselves from Brokewell and other similar malware, Android users should adhere to extremely strict security practices. It is essential to download apps and updates only from trusted sources like the Google Play Store and activate Google Play Protect, which offers additional protection against known versions of malware. Additionally, it’s important to be critical of app permission requests and carefully verify the identity of app developers.
