New FakeCall Malware Hijacks Android Phones to Intercept Banking Calls and Steal Sensitive Data
The latest variant of the FakeCall malware has taken vishing attacks to a new level, hijacking Android devices to intercept banking calls and manipulate call interfaces. This highly sophisticated malware leverages accessibility permissions to gain control over calls, messages, and other sensitive data, tricking users into sharing critical financial information.
- FakeCall Malware Evolution: Initially targeting South Korea, this malware family has evolved with advanced vishing (voice phishing) capabilities to deceive users globally.
- Hijacked Calls: FakeCall can set itself as the device’s default dialer, intercepting and redirecting calls intended for banks to rogue numbers under attackers' control.
- Sophisticated Permissions Abuse: By exploiting accessibility services, FakeCall can perform actions such as taking pictures, recording audio, tracking location, and even imitating a live video feed.
- Convincing UI Imitation: The malware creates a fake UI resembling the legitimate Android call screen, misleading victims into believing they are speaking with their bank.
- Enhanced Espionage: FakeCall collects SMS messages, contacts, installed apps, and can delete or add contacts, making it a potent tool for data theft.
- Growing Mobile Phishing (Mishing): The malware’s approach showcases evolving mobile phishing tactics countering improved security measures and caller identification efforts.
FakeCall’s new variant highlights a critical need for mobile security vigilance, particularly for financial app users. Net Protector Mobile Security offers a proactive defense, including real-time protection and anti-phishing measures to block malicious apps, phishing links, and fraudulent calls.
Comment(s)
Categories
- Other (42)
- Ransomware (122)
- Events and News (26)
- Features (44)
- Security (418)
- Tips (79)
- Google (22)
- Achievements (8)
- Products (33)
- Activation (7)
- Dealers (1)
- Bank Phishing (42)
- Malware Alerts (186)
- Cyber Attack (218)
- Data Backup (11)
- Data Breach (74)
- Phishing (137)
- Securty Tips (1)
- Browser Hijack (16)
- Adware (15)
- Email And Password (67)
- Android Security (55)
- Knoweldgebase (37)
- Botnet (15)
- Updates (3)
- Alert (70)
- Hacking (57)
- Social Media (7)
- vulnerability (53)
- Hacker (31)
- Spyware (8)
- Windows (5)
- Microsoft (21)
- Uber (1)
- YouTube (1)
- Trojan (2)
- Website hacks (3)
- Paytm (1)
- Credit card scam (1)
- Telegram (3)
- RAT (5)
- Bug (3)
- Twitter (2)
- Facebook (7)
- Banking Trojan (5)
- Mozilla (2)
- COVID-19 (5)
- Instagram (2)
- NPAV Announcement (5)
- IoT Security (1)
- Deals and Offers (1)
- Cloud Security (8)
- Offers (5)
- Gaming (1)
- FireFox (2)
- LinkedIn (2)
- WhatsApp (4)
- Amazon (1)
- DMart (1)
- Payment Risk (4)
- Occasion (2)
- firewall (1)
- Cloud malware (2)
- Cloud storage (2)
- Financial fraud (4)
- Impersonation phishing (1)
- DDoS (4)
- Smishing (2)
- Whale (0)
- Whale phishing (3)
- WINRAR (2)
- ZIP (1)
Recent Posts
New Android Banking Malware 'ToxicPanda' Targets Users with Fraudulent Money Transfers
November 06, 2024
Interlock Ransomware: New Threat Targets FreeBSD Servers with Double-Extortion Attacks
November 05, 2024
Archive
Tags
cyber attack
phishing
data breach
ransomware
ransomeware
android malware
cyber security
malware
financial security
phishing attack
data stealing
cyber threat
lockbit
twitter
cybercrime
ddos
india
cert-in
phishing email
microsoft
critical vulnerability
trojan
winrar
pakistani hackers
android apps
cyber attacks
email security
organisation
scam
cryptojacking
play store
phishing scam
user data leak
email phishing
vulnerability
clop
android
pune
malicious apps
clop gang
data security
microsoft team
december cyber attacks
pakistan-backed hacker
advanced malware
cybercriminals
data backup
data theft
cyber attack in india
ddos attack