Do you have an Android mobile device such as Samsung, Sony Xperia, HTC, etc? Well, security researchers have found a variant of a new Android trojan which it has been distributed to Android devices through a fake anti-virus application called Naver Defender.
This application is able to steal sensitive information from the device, as well as being capable of recording phone calls.
However, it does not look that the malware is unique. It has been found in the past variants with the following capabilities:
- Record phone calls & audio
- Steal web history and files
- Gain root access
- Collect a list of installed applications
You may ask yourself, where do they send this data? Well, all stolen data is then sent to an attacker-controlled command and control (C2) server, hosted on PubNub global Data Stream Network.
To protect yourself from this type of trojan, make sure to:
- Never install applications from 3rd-party stores
- Ensure that you have Google Play Protect enabled
- Regularly backup your phone
- Keep your device always up-to-date with the latest security patches
Be safe out there, until next Malware Monday.