Flutbot, spyware intended to steal financial login data, takes advantage of Android’s ability to sideload apps. It begins with an SMS message from an apparently reputable source, such as FedEx. If clicked, it asks the user to download and install an app to check package delivery status. It will then access contacts and use those to send SMS messages to others. It also asks for accessibility permission. Flutbot can then observe banking app credentials and details of cryptocurrency accounts. It may be possible to remove Flubot with Android Debug Bridge, but more likely, a factory reset will be necessary.
Key Takeaways:
- Flubot is a new spyware that attempts to steal all financial information from you phone.
- Make sure you have various security apps to ensure you are safe.
- Avoid sideloading apps as they do not require as much security as loading apps from the Play Store.
“First, it will ask for access to your contacts, which it scans and sends to the attacker’s server for further SMS phishing. Your contacts may receive similar messages, so the malware spreads.”
Read more: https://www.makeuseof.com/what-is-flubot-malware/
References:
- Make Use Of (Website)
- Infouoso (YouTube Channel)
