If you use one of the billion-plus Android devices around the world, you know Google's mobile operating system has been by hit by some serious malware the past year. One of the worst was called Stagefright, which allowed hackers to take over your Android device just by having you open a text or downloading an infected application.
Now, Android devices are vulnerable to a Trojan used by hackers to steal your banking credentials. They create phony apps designed to look like apps from financial companies and mobile payment companies in North America, Europe, Australia and elsewhere.
The SlemBunk Trojan works this way. You'll see a fake app for Adobe Flash Player, Facebook's messenger app WhatsApp, or others. It will request that you give it permission to be the device administrator. If you do, its fake app icons disappear, but continue to run in the background.
When you open your financial company's app, or mobile payment app, the malware then asks you to input your user credentials. In some cases, you're asked to input your credentials twice.
Note: Never click on links or open apps that you didn't personally visit or request.
When you click on one of its phony apps, the Trojan starts monitoring your actions. It can be used to wipe out the data partition on your device, intercept text messages, block your phone calls and mute the sound.
The malware can be used to steal your phone number, your apps and other login credentials. It's also used to steal information about your device.
The hackers steal your passwords, including one-time passwords. It steals your Android apps' login credentials and your online banking details.
Note: To keep yourself protected when you're online, be sure to visit the Komando Security Center for tips. There, you'll find information on creating strong passwords, anti-virus software programs, and much more.