Buzz
Following another Google project, the Google Chrome browser being attacked to distribute malware, security researchers have issued a warning about a new type of malware (malicious software) targeting Android devices named Invisible Man. This malware creates a fake Flash update and urges users to install it as soon as possible.
Warning for Android Users: New Threat - Invisible Man Malware
However, the security firm SophosLabs also warns that this malware not only creates fake updates but also comes with a new malware named Invisible Man, marked as Andr/Banker-GUA.
Invisible Man is developed based on the malicious software Svpeng, first discovered in 2015, as stated by SophosLabs.
However, this malware avoids targeting users in Russia. When compromising a device, the Invisible Man malware first checks the phone's language. If the phone's language is set to Russian, all other tasks will be halted. If configured for other languages, Invisible Man requests permission to use the Accessibility Service and attacks the victim's Android device to execute malicious code.
Credit Card Data Theft
Android Users Warned of New Threat - Invisible Man Malware
If the malware is granted permission to use Accessibility Service, it will self-configure as the default SMS app to control screens and steal user-provided information, including credit card data within apps, even in the Google Play Store.
'Invisible Man uses Accessibility Service to access and collect everything on your screen, across other apps, and self-installs as the default SMS app,' the security firm stated.
'The ability to search for something on the screens of other apps is used to create invisible overlays on legitimate banking apps. The overlays block keystrokes, making victims believe they are entering username and password information into the app,' the statement added.
One of the methods Invisible Man uses to steal financial information is through the Google Play Store. When users open the Store to install apps, the credit card information they provide is collected and sent to the attacker.
The simplest way to prevent and counteract the Invisible Man malware is to say no, do not install Flash Player updates from unsafe, unfamiliar sources. If, unfortunately, Flash Player updates are needed or apps are installed mistakenly, absolutely do not grant malware access to crucial parts of the operating system.
Additionally, it is advisable to download and install antivirus apps on Android from Google Play today. Notable antivirus apps for Android from renowned developers such as Avast, Avira, and others can provide better protection for your mobile device.
