Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device, from touches and information displayed to text input and the applications the user launches.

Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device, from touches and information displayed to text input and the applications the user launches.

  • @smeg@feddit.ukEnglish
    311 month ago

    Researchers at fraud risk company ThreatFabric found Brokewell after investigating a fake Chrome update page that dropped a payload, a common method for tricking unsuspecting users into installing malware.

    So just a classic fake update button

    To protect yourself from Android malware infections, avoid downloading apps or app updates from outside Google Play and ensure that Play Protect is active on your device at all times.

    Fine advice for someone who has no idea how their phone works, I suppose

      • @smeg@feddit.ukEnglish
        71 month ago

        True, if you don’t already know the answer to that is “no I don’t” then the answer probably is “yes you do”

    • @Cheradenine@sh.itjust.worksEnglish
      91 month ago

      Remember that the bar for entry for a lot of these things is going to be a trip hazard for most Lemmings.

      I actually explained 419 scams to someone last week when they got a reasonably well crafted one. There are a lot of people who believe in Nigerian Princes.

      That should be my new alt

      • @smeg@feddit.ukEnglish
        21 month ago

        Yeah, as long as I’m always able to disable it then I’m fine with it being there for the casual user

    • @BearOfaTimeEnglish
      21 month ago

      You have to go out of your way to permit apps to install anything since like Android 9, iirc.

      By default, only the play store can install apps, and anything asking for the permission has a pretty clear warning.