New FakeCall Malware Hijacks Android Phones to Intercept Banking Calls and Steal Sensitive Data
The latest variant of the FakeCall malware has taken vishing attacks to a new level, hijacking Android devices to intercept banking calls and manipulate call interfaces. This highly sophisticated malware leverages accessibility permissions to gain control over calls, messages, and other sensitive data, tricking users into sharing critical financial information.
- FakeCall Malware Evolution: Initially targeting South Korea, this malware family has evolved with advanced vishing (voice phishing) capabilities to deceive users globally.
- Hijacked Calls: FakeCall can set itself as the device’s default dialer, intercepting and redirecting calls intended for banks to rogue numbers under attackers' control.
- Sophisticated Permissions Abuse: By exploiting accessibility services, FakeCall can perform actions such as taking pictures, recording audio, tracking location, and even imitating a live video feed.
- Convincing UI Imitation: The malware creates a fake UI resembling the legitimate Android call screen, misleading victims into believing they are speaking with their bank.
- Enhanced Espionage: FakeCall collects SMS messages, contacts, installed apps, and can delete or add contacts, making it a potent tool for data theft.
- Growing Mobile Phishing (Mishing): The malware’s approach showcases evolving mobile phishing tactics countering improved security measures and caller identification efforts.
FakeCall’s new variant highlights a critical need for mobile security vigilance, particularly for financial app users. Net Protector Mobile Security offers a proactive defense, including real-time protection and anti-phishing measures to block malicious apps, phishing links, and fraudulent calls.
Comment(s)
Categories
- Other (42)
- Ransomware (128)
- Events and News (26)
- Features (45)
- Security (433)
- Tips (79)
- Google (22)
- Achievements (9)
- Products (33)
- Activation (7)
- Dealers (1)
- Bank Phishing (42)
- Malware Alerts (195)
- Cyber Attack (221)
- Data Backup (11)
- Data Breach (80)
- Phishing (139)
- Securty Tips (1)
- Browser Hijack (16)
- Adware (15)
- Email And Password (67)
- Android Security (56)
- Knoweldgebase (38)
- Botnet (15)
- Updates (3)
- Alert (71)
- Hacking (57)
- Social Media (7)
- vulnerability (54)
- Hacker (31)
- Spyware (8)
- Windows (6)
- Microsoft (21)
- Uber (1)
- YouTube (1)
- Trojan (2)
- Website hacks (3)
- Paytm (1)
- Credit card scam (1)
- Telegram (3)
- RAT (5)
- Bug (3)
- Twitter (2)
- Facebook (7)
- Banking Trojan (5)
- Mozilla (2)
- COVID-19 (5)
- Instagram (2)
- NPAV Announcement (5)
- IoT Security (1)
- Deals and Offers (1)
- Cloud Security (8)
- Offers (5)
- Gaming (1)
- FireFox (2)
- LinkedIn (2)
- WhatsApp (4)
- Amazon (1)
- DMart (1)
- Payment Risk (4)
- Occasion (2)
- firewall (1)
- Cloud malware (2)
- Cloud storage (2)
- Financial fraud (7)
- Impersonation phishing (1)
- DDoS (4)
- Smishing (2)
- Whale (0)
- Whale phishing (3)
- WINRAR (2)
- ZIP (2)
Recent Posts
Archive
Tags
cyber attack
phishing
data breach
ransomware
ransomeware
android malware
cyber security
financial security
malware
phishing attacks
phishing attack
data stealing
cyber threats
ddos
trojan
cybercrime
critical vulnerability
cyber threat
twitter
financial fraud
phishing email
microsoft
data theft
cert-in
lockbit
network security
india
clop gang
clop gang extorting
data security
phishing scam
user data leak
android
whatsapp
play store
clop
email phishing
cyber fraud
pakistani hackers
cyber attack in india
independence day
malicious apps
december cyber attacks
phishing campaigns
server security
pakistan-backed hacker
android apps
cryptojacking
winrar
pune