|
|
Android malware hid in fake Netflix app and spread through WhatsApp - TechAmok
Android malware hid in fake Netflix app and spread through WhatsApp - [security]
03:22 PM EDT - Apr,07 2021 - post a comment Despite Google's efforts to combat malware on Android, every now and then a new threat slips through the cracks. Researchers at Check Point Research have shared details (via ZDNet) on a threat that could have lured Android users with the promise of free access to Netflix content and spread through WhatsApp. As noted in the company's blog post, the malware lives in an app called FlixOnline, which was available on the Play Store and promised users the ability to watch Netflix content from all over the world. However, instead of doing that, the app requests a handful of permissions that enable it to steal user data and spread to other users more easily. Once all permissions were granted, the app hid itself from the app launcher so it would be harder to delete.
Upon being installed, the app requests a few special permissions - displaying over other apps, ignore battery optimizations, and notification access. Displaying over other apps means the app can disguise itself and display a fake login screen on top of other apps, leading users to enter their personal information and sending it to the attackers. Meanwhile, ignoring battery optimizations means the app won't be killed in the background, so it can stay active even if it's been idle for a while.
Notification access is potentially the most concerning one. For one thing, the app can harvest information from the user's notifications, including messages they receive. Not only that, the app can perform quick actions on those notifications, like replying to messages on WhatsApp, which is exactly what it does to spread to other users. Whenever the affected user gets a notification from WhatsApp, the fake app hides it and sends a reply promising two months of free Netflix access with a download link that installs the malware on that device as well.
Check Point Research reported the malware to Google prior to disclosing the vulnerability and the FlixOnline app was removed from the Play Store quickly. However, roughly 500 users downloaded the app over two months, which could have spread the malware to many other users through WhatsApp. Anyone who has been affected should uninstall the app from the device settings and change their passwords. |
|
Short overview of recent news articles |
|
A critical security vulnerability in Microsoft Remote Desktop Client (Jul,10 2025 ) Samsung Z Fold/Flip 7 Impressions: Major Upgrades! (Jul,10 2025 ) Gmail's latest feature helps you get rid of those pesky emails from (Jul,08 2025 ) I'm an idiot and still made top 5... here's how (Jul,06 2025 ) The Fantastic Four: First Steps - Official 'Lift Off' Teaser (Jul,05 2025 ) Samsung Galaxy Z Fold 7 - Hands on Look (Jul,04 2025 ) RTX 5070 Ti vs RTX 5080 - Is 5080 Gaming Laptop Worth More $$$? (Jul,04 2025 ) FIRST DRIVE: Praga Bohema - Crazy Hypercar Driven! (Jul,04 2025 ) Ballerina - Exclusive John Wick Deleted Scene (2025) Keanu Reeves, (Jul,03 2025 ) Call of Duty: WWII - Remote Code Execution Warning (PC Game Pass) (Jul,03 2025 ) 1014HP Lamborghini REVUELTO 369KMH TOP SPEED POV on AUTOBAHN (Jul,02 2025 ) Nvidia Drivers (V 576.80 vs V 576.88) - Test In 12 Games - RTX 4060 (Jul,01 2025 ) AMD Adrenalin 25.6.3 Driver Is Available (Jun,30 2025 ) NVIDIA GeForce RTX 5080 SUPER Could Feature 24 GB Memory, Increased (Jun,30 2025 ) Guess What Nvidia Did THIS Time (Jun,29 2025 ) The 10 Best Dinosaur Movies of All Time (Jun,28 2025 ) Microsoft officially confirms that Windows 11 version 25H2 is coming (Jun,28 2025 ) Eddington - Official Trailer 2 (2025) Joaquin Phoenix, Pedro Pascal (Jun,26 2025 ) Microsoft Say System Restore Points Now Expire After 60 Days (Jun,25 2025 ) Facebook, Netflix, and Microsoft Websites Hijacked to Insert Fake (Jun,25 2025 ) I put a $3000 GPU in my Average PC... It Was a Mistake (Jun,24 2025 ) Best External SSD for Mac 2025: After Weeks of Testing, Here's What (Jun,24 2025 ) Mostly boob jokes this week (RTX 5090 DD) - Tech News June 22 (Jun,23 2025 ) Superman - Official 30 Second Spot (2025) (Jun,21 2025 ) 'The fastest road car I've ever been in!' - Ferrari F80 track day (Jun,21 2025 ) CPU SCAM: AMD Ryzen 9800X3D Counterfeits & Fraud (Jun,20 2025 ) 28 Years Later Review (Jun,19 2025 ) HW News - NVIDIA "N1x" CPU Leak, ASUS Xbox ROG Ally, More Intel (Jun,18 2025 ) NVIDIA GeForce 576.80 WHQL Driver (Jun,17 2025 ) The Fantastic Four: First Steps - Official 'H.E.R.B.I.E.' Teaser (Jun,16 2025 ) Huawei Maextro S800 First Look - A True BMW & Mercedes Killer? (Jun,15 2025 ) Upgrade Windows 10 to Windows 10 LTSC Without Losing Data (Jun,14 2025 ) Squid Game: Season 3 - Final Games Trailer (Jun,14 2025 ) WWDC 2025: Everything Revealed in 9 Minutes (Jun,11 2025 ) Microsoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flaws (Jun,10 2025 ) This Malware BREAKS WINDOWS! (Jun,10 2025 ) Reset Forgotten Password without Any Software, without USB drive in (Jun,10 2025 ) Microsoft Will Block Unsupported Hardware For Windows 11 (Jun,08 2025 ) Memory Wars! Apple vs Ryzen - Is Unified Memory Faster than Shared (Jun,08 2025 ) Predator: Killer of Killers - Exclusive Clip (2025) (Jun,06 2025 ) Enable Deep Effect on Samsung One Ui 7 (Jun,06 2025 ) Google Kills Off PayPal in Google Wallet (Jun,05 2025 ) Samsung's Next Flagship Foldable Will be Ultra (Jun,05 2025 ) Over 40 Malicious Chrome Extensions Mimic Popular Brands to Steal (Jun,05 2025 ) The Witcher IV - Unreal Engine 5 tech demo (Jun,03 2025 ) Nintendo Switch 2 Welcome Tour trailer (Jun,02 2025 ) Stranger Things 5 | Date Announcement | Netflix (Jun,01 2025 ) RTX 5060 Review... No wonder NVIDIA tried to stop us from talking (May,31 2025 ) Samsung Galaxy Watch 8 Classic Is Here - 7 New Updates (May,30 2025 ) Biggest Windows 11 24H2 May Update in the Main Release (May,30 2025 )
>> News Archive <<
| |
|
