Over the years cybercriminals devised various means of stealing data and user information, particularly mobile banking information. One of the most prevalent ways is the use of Android malware.
Heimdal Security says malicious software, more known as malware, is “software that is defined by malicious intent. This type of ill-intentioned software can disrupt normal computer operations, harvest confidential information, obtain unauthorized access to computer systems, display unwanted advertising, and more.”
The latest of these malwares being used by cybercriminals in Nigeria is the FluBot malware.
YOU MAY ALSO LIKE: BEWARE! Your Sleeping Positions Affect Your Health
A statement signed by Dr. Ikechukwu Adinde, Director, Public Affairs, the Nigerian Communications Commission, NCC revealed that FluBot, distributed via Short Message Service (SMS), targets Androids with fake security updates and App installations.
HOW DOES FLUBOT WORK?
According to NCC, FluBot;
- Poses as FedEx, DHL, Correos, and Chrome applications
- Ensures continuous presence on devices by forcing unsuspecting users to adjust accessibility settings on their devices
- Creates fake login screens of popular banks,
- The malware operators collect user login details on the fake pages and transmit those details to their control point
- Using this method, the attacker intercepts the One Time Passwords that are associated with banking and replaces the default SMS app on the targeted Android device.
- It gains access to the device via SMS, and then sends similar messages to other contacts on the device it has attacked, in order to entice them to download the fake app.
Here are ways of protecting your banking information:
- Do not click on the link if you receive a suspicious text message, and do not install any app or security update the page asks you to install.
2. Use updated antivirus software that detects and prevents malware infections.
3. Apply critical patches to the system and application.
4. Use strong passwords and enable Two-Factor Authentication (2FA) over logins.
5. Back up your data regularly.
6. If you have been affected by this campaign, you should reset your device to factory mode as soon as possible. This will delete any data on your phone, including personal data.
7. Do not restore from backups created after installing the app.
8. You will also need to change the passwords to all of your online accounts, with urgency, around your online bank accounts.
9. If you have concerns that your accounts may have been accessed by unauthorised people, contact your bank immediately.