SharkBot malware reappears on Google Play, targeting user’s bank logins
SharkBot malware’s newly updated version has reappeared in the Google’s Play Store, which is targeting the bank logins of Android users through apps.
Consequently, several users have downloaded more than thousands of banking apps and now, these upgraded malware has targeted the login page of such banking apps.
Initially, the malware was present in two of the Android apps which does not get detected in the Google’s automatic review. When the users installed such apps into the Android, the SharkBot gets automatically added into the users mobile phones.
It has been found that the two malicious apps are ‘Mister Phone Cleaner’ and ‘Kylhavy Mobile Security’ which has downloaded by almost 60,000 users. However, both the apps are now been removed from Google Play, but the users who downloaded the app should uninstall it immediately.
Accordingly, when the user logs into their bank account, the malware steals their valid session cookie. Cookies are valuable for taking the control over the accounts because they contain software and location parameters. Afterwards, the malware gets access to every bank’s information through the app.