Xenomorph, banking malware that targets banks around the world, is found on mobile phones with operating system android. The virus is present on all continents and affects countries such as the United States, Turkey and Australia, and Brazil is not excluded. Here, Bradesco, Caixa Econômica, Santander and Itaú are among those affected by banking malware.
Banking malware steals data from financial institutions
see more
Alert: these are the dangers of paying the minimum on your credit card bill…
PIX: It is already possible to send money even with zero balance
Xenomorph is not unknown to anyone who understands cybersecurity. The banking malware that is already in its third version is available on Google PlayStore and camouflages itself from apps that, at first glance, appear to be legitimate.
The motives behind the creation of banking malware are also well known: cybercriminals seek to gain financial advantage through commercialization of the virus in online forums, in addition to diverting money from customers and appropriating personal data, such as name and CPF, for purposes criminals.
Naturally, if the banking malware presented itself as it is, the Google Play Store would delete the app and downloads would also be suspended.
However, they camouflage themselves through the Android Accessibility Service and thus manage to operate freely on the smartphone.
How is malware downloaded?
Today, Xenomorph is added to the cell phone when a person downloads an app to convert cryptocurrency values. Once installed on the cell phone, the app automatically changes the icon to go unnoticed.
The icon chosen is Google's Play Protect.
Two-factor authentication, used to access social networks and other applications, is also the target of attack by cybercriminals, who copy authentication codes automatically generated by apps.
How to defend against digital attacks?
With the growing increase in virtual attacks through apps, WhatsApp messages, calls and even cloning numbers, the ideal is to always remain vigilant.
When downloading apps, look at the comments, ratings, number of downloads and, if it's an unknown name, be sure to search for information on Google.
It may seem simple to download an app on your smartphone, but the measure can turn into a headache in the case of banking malware or other apps with few comments in the store of the main operating systems of cell phones.