IllNess@infosec.pub to Security News@infosec.pubEnglish · 9 months ago

Anatsa Android malware downloaded 150,000 times via Google Play

www.bleepingcomputer.com

2

cross-posted to:
cybersecurity@infosec.pub

15

Anatsa Android malware downloaded 150,000 times via Google Play

www.bleepingcomputer.com

IllNess@infosec.pub to Security News@infosec.pubEnglish · 9 months ago

2

cross-posted to:
cybersecurity@infosec.pub

The Anatsa banking trojan has been targeting users in Europe by infecting Android devices through malware droppers hosted on Google Play.

The five malicious apps are:

Phone Cleaner - File Explorer (com.volabs.androidcleaner)

PDF Viewer - File Explorer (com.xolab.fileexplorer)

PDF Reader - Viewer & Editor (com.jumbodub.fileexplorerpdfviewer)

Phone Cleaner: File Explorer (com.appiclouds.phonecleaner)

PDF Reader: File Manager (com.tragisoap.fileandpdfmanager)

You must log in or register to comment.

Chat

xia@links.hackliberty.org
link
fedilink
English
arrow-up
8
arrow-down
1·
9 months ago
But… but… muh play protect! :)
- IllNess@infosec.pubOP
  link
  fedilink
  English
  arrow-up
  4·
  9 months ago
  Here’s the worst part:
  
  At the time of writing, Google removed all Anatsa dropper apps from the official Android store except for the PDF Reader, which continues to be available.
  
  I no longer see the app. At least Google is doing something.