ESET Warns Against Malware That Masquerades As Flash Player: Here's How To Detect The Trojan
ESET researchers revealed a new app that masquerades as Flash Player. Unlucky users might find their devices siphoned of sensitive data, including bank credentials.
ESET blog spot explained that they discovered an Android/TrojanDownloader.Agent.JI from a score of compromised websites. Hackers behind the Trojan also uses credible-looking social media links to make users initiate the download. The modus for this malware is convincing users that they have to update their Flash Player. Once installed, it creates a fake "Battery Saver" feature in the Android System.
The malicious Battery Saver asks for permission on Accessibility functions. When granted permission, it begins to download another malware which in turn scrubs the phone content and enables Explore by touch. This feature mimics the user's actions while clandestinely displaying whatever they want on the screen, SC Magazine reported.
The biggest clue for users that they are being hacked is a black lock screen with an Android logo and script that says "Installed battery saving driver!" This lock screen covers the hacker's activity while installing additional malwares that will complete the trick.
Most vulnerable users are those who uses their phone to access bank accounts, PayPal and other online finances, according to ESET malware researcher Lukas Stefanko. The best way to eradicate the culprit is to install security software like ESET's Mobile Security and Antivirus.
If they suspect that they are infected, users can also manually expel the malware from their phone. To do so, users have to uninstall the Flash Player by tapping Settings > Application Manager > Flash Player. However, there are cases where Administrator Rights have been given so it is necessary to deactivate it first by tapping Settings > Security > Flash Player.
Stefanko stressed that the latter method is only effective if there are no other hidden apps that was secretly downloaded and installed. Still, the best way to ensure a malware-free device is to use mobile security solution.