Technology News

SharkBot Malware Targeting Banking, Crypto Apps Resurfaces on Google Play Store: All Details

Once installed, the malware cancels ‘log-in with your fingerprint’ prompts forcing users to enter their password and username.

Written by Radhika Parashar, Edited by David Delima | Updated: 5 September 2022 17:17 IST
SharkBot Malware Targeting Banking, Crypto Apps Resurfaces on Google Play Store: All Details

Photo Credit: Reuters

Crypto scammers have been choosing mobile apps as a way to enter phones and laptops

Highlights
  • Google has not yet commented on the matter
  • Mister Mobile Cleaner app shows on Play Store in India
  • Kylhavy Mobile Security does not show on Play Store in India
Advertisement

Banking and crypto-related apps are at risk of being infected by a malware, that is making the round on Google Play wrapped as apps — Mister Phone Cleaner and Kylhavy Mobile Security. The malware is capable of stealing cookies from accounts and while bypassing authentication methods that require user input, such as fingerprints. The malware, known as the SharkBot dropper is used to infect users' devices once it is installed. Alberto Segura, a malware analyst tweeted about this resurgence of the malicious software on Twitter to alert Android users.

Once installed, the malware cancels the ‘log-in with your fingerprint' dialogs so that the users are forced to enter the password and username, according to Segura. The SharkBot malware is capable of bypassing two-factor authentication.

As per public Google Play store statistics, the Mister Phone Cleaner app has over 50,000 downloads. It is depicted by a blue logo showing a white and blue broom. While this app is available on the Play Store in India, the Kylhavy Mobile Security app does not show up in India, but it reportedly has over 10,000 downloads.

“This new Sharkbot dropper asks the victim to install the malware as a fake update for the antivirus to stay protected against threats,” Segura said in a blog post.

The main goal of the SharkBot malware was “to initiate money transfers from the compromised devices via Automatic Transfer Systems (ATS) technique bypassing multi-factor authentication mechanisms,” Cleafy Labs, an online fraud management firm had explained when the malware was first identifed.

Since mobile apps are an easy way to take control of smartphones, several scammers have been exploiting these apps to target victims.

Back in July, tech giants Apple and Google received letters from US lawmakers, asking for details on crypto-related apps that are available on the App Store and Play Store respectively. In these letters, Senator Sherrod Brown, the chair of the Senate Banking Committee also asked the companies to provide information on the ways they tackle potentially dangerous apps that may be promoting crypto scams.

Cyber criminals have stolen company logos, names, and other identifying information of crypto firms and then created fake mobile apps. It is imperative that app stores have the proper safeguards in place to prevent against fraudulent mobile application activity,” Brown wrote in his letters to the tech giants.

Last year, Google Play removed eight deceptive cryptocurrency apps after they were discovered to be crypto scam apps. These apps were BitFunds – Crypto Cloud Mining, Bitcoin Miner – Cloud Mining, Bitcoin (BTC) – Pool Mining Cloud Wallet, Crypto Holic – Bitcoin Cloud Mining, Daily Bitcoin Rewards – Cloud Based Mining System, Bitcoin 2021, MineBit Pro - Crypto Cloud Mining & BTC miner, and Ethereum (ETH) - Pool Mining Cloud.

With the next Apple event due very soon, we dive into all the leaks and rumours surrounding iPhone 14 on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Cryptocurrency, Malware, Crypto Apps, SharkBot Dropper, Google Play Store, Mister Phone Cleaner, Kylhavy Mobile Security
Radhika Parashar
Radhika Parashar
Radhika Parashar is a senior correspondent for Gadgets 360. She has been reporting on tech and telecom for the last three years now and will be focussing on writing about all things crypto. Besides this, she is a major sitcom nerd and often replies in Chandler Bing and Michael Scott references. For tips or queries you could reach out to her at RadhikaP@ndtv.com. More
Redmi G Pro Ryzen Edition Gaming Laptop Launch Set for September 7, Nvidia GeForce RTX 3060 GPU Teased

Related Stories

SharkBot Malware Targeting Banking, Crypto Apps Resurfaces on Google Play Store: All Details
Comment
Share on Facebook Gadgets360 Twitter Share Tweet Snapchat Share Reddit Comment google-newsGoogle News

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

Advertisement

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. OTT Releases This Week: Rebel Moon Part 2, Article 370 and More
  2. Ray-Ban Meta Smart Glasses: Versatile and Practical
  3. Itel Super Guru 4G With YouTube, UPI Support Debuts in India: See Price
  4. Meta Claims Its Newly Launched Llama 3 AI Outperforms Gemini 1.5 Pro
  5. OnePlus 11R Solar Red With 8GB RAM, 128GB Storage Debuts in India: See Price
  6. Acer Predator Helios 16, Helios Neo 16 Updated With 14th Gen Intel Core CPUs
  7. Vivo V30e Set to Launch in India Soon; Specifications, Colurways Teased
#Latest Stories
  1. OnePlus 11R 5G Solar Red Variant With 8GB RAM, 128GB Storage Launched in India
  2. Adobe Express Mobile App With Firefly AI Is Now Available Globally
  3. Slack AI With New Recaps Feature Now Available to Paid Users Globally
  4. OnePlus Ace 3 Pro Design Features Surface Online; Key Specifications Tipped
  5. Acer Predator Helios 16, Predator Helios Neo 16 Refreshed With 14th Gen Intel Core CPUs in India
  6. EA Sports F1 24 Sets May 31 Release Date, Gameplay Features Revealed in New Trailer
  7. Meta AI Gets Upgraded With Llama 3 to Add New Features, Better Integration
  8. Vivo V30e India Launch Date Set for May 2; Design, Colourways, Key Specifications Revealed
  9. Itel Super Guru 4G Feature Phone With YouTube, UPI Support Launched in India: Price, Specifications
  10. Apple HomePod LCD Display Component Image Leak Hints at Arrival of Upgraded Model
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »