|
|
Android malware hid in fake Netflix app and spread through WhatsApp - TechAmok
Android malware hid in fake Netflix app and spread through WhatsApp - [security]
03:22 PM EDT - Apr,07 2021 - post a comment Despite Google's efforts to combat malware on Android, every now and then a new threat slips through the cracks. Researchers at Check Point Research have shared details (via ZDNet) on a threat that could have lured Android users with the promise of free access to Netflix content and spread through WhatsApp. As noted in the company's blog post, the malware lives in an app called FlixOnline, which was available on the Play Store and promised users the ability to watch Netflix content from all over the world. However, instead of doing that, the app requests a handful of permissions that enable it to steal user data and spread to other users more easily. Once all permissions were granted, the app hid itself from the app launcher so it would be harder to delete.
Upon being installed, the app requests a few special permissions - displaying over other apps, ignore battery optimizations, and notification access. Displaying over other apps means the app can disguise itself and display a fake login screen on top of other apps, leading users to enter their personal information and sending it to the attackers. Meanwhile, ignoring battery optimizations means the app won't be killed in the background, so it can stay active even if it's been idle for a while.
Notification access is potentially the most concerning one. For one thing, the app can harvest information from the user's notifications, including messages they receive. Not only that, the app can perform quick actions on those notifications, like replying to messages on WhatsApp, which is exactly what it does to spread to other users. Whenever the affected user gets a notification from WhatsApp, the fake app hides it and sends a reply promising two months of free Netflix access with a download link that installs the malware on that device as well.
Check Point Research reported the malware to Google prior to disclosing the vulnerability and the FlixOnline app was removed from the Play Store quickly. However, roughly 500 users downloaded the app over two months, which could have spread the malware to many other users through WhatsApp. Anyone who has been affected should uninstall the app from the device settings and change their passwords. |
|
Short overview of recent news articles |
|
Snapdragon X2 Elite Early - Performance Preview (Feb,10 2026 ) AI Chat App Exposes 300 Million Messages from 25 Million Users (Feb,10 2026 ) My Kids can Pick ANY Phone They Want For a Present (Feb,09 2026 ) Microsoft Removes Printer Drivers in Windows 11 Update - What You (Feb,09 2026 ) Apple's Next AirPods Pro Will Literally See the World Around You (Feb,09 2026 ) Beware of Apple Pay Phishing Attack that Aims to Steal Your Payment (Feb,09 2026 ) NASA to Allow Astronauts to Bring Smartphones to Space (Feb,08 2026 ) AT&T Launches New Samsung Phone for Kids (Feb,08 2026 ) Headphones with Noise Cancelling that Don't Stick in your Ear - (Feb,07 2026 ) Microsoft Just Killed Your Old Printer: Legacy Drivers Officially (Feb,07 2026 ) RenEngine Loader and HijackLoader Duo Infects Over 400,000 Gamers in (Feb,06 2026 ) EpsteIn Tool: Check If Your LinkedIn Contacts Appear in 3.5 Million (Feb,06 2026 ) Bitcoin's $64,000 Reality vs. $87K+ Production Costs Sparks (Feb,05 2026 ) Crypto Analyst Issues Urgent 'Final Warning' on XRP: Claims (Feb,05 2026 ) AI-Powered Breach: Hacker Claims AWS Kingdom in Under 10 Minutes (Feb,04 2026 ) Microsoft Axes Standalone SharePoint and OneDrive Plans in Push to (Feb,04 2026 ) Nvidia's $100 billion OpenAI deal has seemingly vanished (Feb,04 2026 ) The Best 14" Gaming Laptops Right Now (Feb,04 2026 ) The Solution to the RAM Crisis is... DDR4??? (Feb,04 2026 ) Google Meet can now join Microsoft Teams calls (Feb,03 2026 ) The Devil Wears Prada 2 - Official Trailer (2026) Meryl Streep, Anne (Feb,03 2026 ) *EPSTEIN HAD THE SEC SUE RIPPLE/XRP - HOLY SH*T | Gensler Worked For (Feb,02 2026 ) Mozilla Firefox is making it super easy to turn off its generative (Feb,02 2026 ) Windows 11 quietly gets a new security feature to protect system (Feb,01 2026 ) WARNING: TRUMP & RIPPLE/XRP SECRET AGREEMENT AT DAVOS (Feb,01 2026 ) China's new RAM company, CXMT, is selling RAM at $138 (Feb,01 2026 ) Windows keeps a permanent record of every USB device you've ever (Feb,01 2026 ) Intel Is BACK - Panther Lake Changes Everything (Feb,01 2026 ) NVIDIA Releases GeForce Security Update Driver 582.28 for Legacy (Jan,31 2026 ) AMD 'Zen 6' CCD Packs 12 Cores, 48 MB L3 Cache (Jan,31 2026 ) Microsoft Set to Disable Legacy NTLM Authentication by Default in (Jan,31 2026 ) NVIDIA GeForce 591.86 WHQL Driver (Jan,30 2026 ) iOS 26.3-Important New iPhone Location Privacy Feature Coming Soon (Jan,30 2026 ) I Made the Ultimate Steam Machine Before Valve (Jan,29 2026 ) Wardriver - Official Trailer (2026) Dane DeHaan, Sasha Calle, (Jan,29 2026 ) Apple Intros Improved AirTag (Jan,28 2026 ) US Version of TikTok off to Bumpy Start; Competitors Surge (Jan,28 2026 ) Google Chrome no longer needs you, as Gemini takes the driving seat (Jan,28 2026 ) Premium Subscriptions Coming to Facebook, Instagram, WhatsApp (Jan,27 2026 ) Windows 11 Best For Gaming? Windows 11 25H2 vs. Windows 10 (Jan,25 2026 ) Microsoft Says Uninstall This Windows Update Immediately (KB5077744 (Jan,24 2026 ) Xbox Developer Direct Livestream 2026 | Fable, Forza Horizon 6, (Jan,22 2026 ) Iridium Begins Testing its own Satellite Service for Phones (Jan,22 2026 ) AMD Releases Adrenalin Edition 26.1.1 WHQL Drivers (Jan,22 2026 ) AI in 2050 (Jan,18 2026 ) iOS 26.2 Fixes Major Security Flaws (Jan,17 2026 ) Google Links its AI to Your Gmail and Photos for "Personal (Jan,17 2026 ) Fastest Koenigsegg v Fastest Bugatti: DRAG RACE (Jan,17 2026 ) Creating a 48GB NVIDIA RTX 4090 GPU (Jan,17 2026 ) CES was frickin weird, guys (Jan,14 2026 )
>> News Archive <<
| |
|
