New FakeCall Malware Hijacks Android Phones to Intercept Banking Calls and Steal Sensitive Data
The latest variant of the FakeCall malware has taken vishing attacks to a new level, hijacking Android devices to intercept banking calls and manipulate call interfaces. This highly sophisticated malware leverages accessibility permissions to gain control over calls, messages, and other sensitive data, tricking users into sharing critical financial information.
- FakeCall Malware Evolution: Initially targeting South Korea, this malware family has evolved with advanced vishing (voice phishing) capabilities to deceive users globally.
- Hijacked Calls: FakeCall can set itself as the device’s default dialer, intercepting and redirecting calls intended for banks to rogue numbers under attackers' control.
- Sophisticated Permissions Abuse: By exploiting accessibility services, FakeCall can perform actions such as taking pictures, recording audio, tracking location, and even imitating a live video feed.
- Convincing UI Imitation: The malware creates a fake UI resembling the legitimate Android call screen, misleading victims into believing they are speaking with their bank.
- Enhanced Espionage: FakeCall collects SMS messages, contacts, installed apps, and can delete or add contacts, making it a potent tool for data theft.
- Growing Mobile Phishing (Mishing): The malware’s approach showcases evolving mobile phishing tactics countering improved security measures and caller identification efforts.
FakeCall’s new variant highlights a critical need for mobile security vigilance, particularly for financial app users. Net Protector Mobile Security offers a proactive defense, including real-time protection and anti-phishing measures to block malicious apps, phishing links, and fraudulent calls.
Comment(s)
Categories
- Other (42)
- Ransomware (124)
- Events and News (26)
- Features (44)
- Security (423)
- Tips (79)
- Google (22)
- Achievements (8)
- Products (33)
- Activation (7)
- Dealers (1)
- Bank Phishing (42)
- Malware Alerts (187)
- Cyber Attack (219)
- Data Backup (11)
- Data Breach (75)
- Phishing (138)
- Securty Tips (1)
- Browser Hijack (16)
- Adware (15)
- Email And Password (67)
- Android Security (55)
- Knoweldgebase (38)
- Botnet (15)
- Updates (3)
- Alert (70)
- Hacking (57)
- Social Media (7)
- vulnerability (53)
- Hacker (31)
- Spyware (8)
- Windows (6)
- Microsoft (21)
- Uber (1)
- YouTube (1)
- Trojan (2)
- Website hacks (3)
- Paytm (1)
- Credit card scam (1)
- Telegram (3)
- RAT (5)
- Bug (3)
- Twitter (2)
- Facebook (7)
- Banking Trojan (5)
- Mozilla (2)
- COVID-19 (5)
- Instagram (2)
- NPAV Announcement (5)
- IoT Security (1)
- Deals and Offers (1)
- Cloud Security (8)
- Offers (5)
- Gaming (1)
- FireFox (2)
- LinkedIn (2)
- WhatsApp (4)
- Amazon (1)
- DMart (1)
- Payment Risk (4)
- Occasion (2)
- firewall (1)
- Cloud malware (2)
- Cloud storage (2)
- Financial fraud (4)
- Impersonation phishing (1)
- DDoS (4)
- Smishing (2)
- Whale (0)
- Whale phishing (3)
- WINRAR (2)
- ZIP (2)
Recent Posts
Helldown Ransomware Expands to VMware and Linux: A New Threat to Critical Infrastructure
November 20, 2024
Thousands of Fake Shopping Sites Launched to Steal Credit Card Data During Black Friday
November 15, 2024
Archive
Tags
cyber attack
phishing
data breach
ransomware
ransomeware
android malware
cyber security
malware
financial security
phishing attack
data stealing
ddos
cybercrime
critical vulnerability
trojan
twitter
cyber threat
phishing email
microsoft
data theft
cert-in
lockbit
india
december cyber attacks
pakistan-backed hacker
occasion
financial fraud
cryptojacking
clop gang
clop gang extorting
data security
user data leak
android apps
phishing scam
play store
advanced malware
android
whatsapp
clop
email phishing
fedex
cyber crime
malicious apps
pakistani hackers
net protector total security
cyber attack in india
google play store
independence day
winrar
pune