Urgent warning to Android users over fake Chrome updates that could drain your ... trends now
Hackers have unleashed a new bank account-draining malware, appropriately named 'Brokewell,' and security researchers warn that it's targeting Android users.
The Brokewell trojan is currently posing as an update to Google Chrome for Android, at times even impersonating Google's ads for updates.
Worse, according to the team's security report, Brokewell 'appears to be in active development, with new commands added almost daily.'
The malware kit also includes a suite of 'spyware' tools capable of covertly surveilling and remotely controlling an Android user's mobile device.
'It can collect information about the device, call history, geolocation, and record audio,' the security researchers warned.
Hackers have unleashed a new bank account-draining malware, appropriately named 'Brokewell,' and security researchers warn that it's targeting Android users
Brokewell is currently posing as an update to Google Chrome for Android, at times even impersonating Google's ads for updates (example above), according to the latest advisory from the security researchers at ThreatFabric
Cybersecurity researchers at the firm ThreatFabric first identified Brokewell via the hackers' faked Google Chrome update ads, but their 'retrospective analysis' discovered prior hacking campaigns using the malware.
This 'previously unseen malware family with a wide range of capabilities,' they wrote, had also targeted Klarna, a popular 'buy now, pay later' financial app, and ID Austria, the official digital authentication service created by Austria's national government.
Brokewell, according to ThreatFabric, employs two increasingly common tactics popular with similar cyber-burglarizing mobile banking malware.
First it uses 'overlay attacks,' which creates a false screen over the targeted banking app, to steal the user's login
