This Android malware will randomly wipe your phone

By Krishna Rao On Jan 26, 2022

TEMU Affiliate Program 2024: Earn Up to £100,000 a month!

Mar 28, 2024

How is eBPF Revolutionizing Kubernetes Scaling

Jan 20, 2024

Did you know that besides operating systems and apps, malware gets updated too? And that is unfortunate because it makes malware even more dangerous. According to Bleeping Computer, the malware known as BRATA has added new features with its latest iteration including GPS tracking, the ability to use multiple connectivity channels, and the capability to perform a factory reset that wipes from the device all signs of the malware attack (along with all data).

Very dangerous malware called BRATA can cause a victim’s phone to perform a factory reset

This is very dangerous malware that is now reportedly making its way toward e-banking users in the UK, Poland, Italy, Spain, China, and Latin America. There are different variants of BRATA that are found in different countries and attack different banks and look to cause chaos for different types of banking customers. Still, regardless of the type of BRATA being deployed, the threat of having your data wiped can be scary and can force fearful users to backup their Android handset more often than usual.

Malware filled app asks for permission to perform a factory reset on a victim’s phone

Security experts aren’t sure what the point of the new GPS tracking capability is, but the report agrees with our assessment that “The scariest of the new malicious features is the performing of factory resets.” The factory resets take place at certain times such as after a phone has been compromised and a fraudulent transaction has been completed.

The factory reset is used by the malware as a kill switch to protect the identity of the attackers from being discovered. But as the report notes, it means that data being kept by the victim can be erased in the blink of an eye. And BRATA is just one of several Android banking trojans looking to steal or block innocent people’s banking credentials.

The best way to prevent yourself from becoming a victim of this malware is to avoid sideloading APKs from websites that seem “iffy” and Android users should stick to installing apps only from the Google Play Store (although to be honest, that won’t always keep your phone lemon fresh and malware-free). Look, we know that we have said this often but if we can mention this once again and capture a reader’s attention, perhaps we can save even just one person from having his phone attacked. Before installing an app from a developer that you’re unfamiliar with, check out the comments section and look for red flags.

Stick to apps from the Google Play Store or the App Store

These could be a comment from a user stating that the app doesn’t work right, or that the app’s icon disappears after it is installed, or that there are too many ads. If you see something like that, do not install the app. Another thing to look for are requests for permissions from apps that you are trying to install.

An example illustrated in the report shows a permission request for an app called iSecurity that asks the phone’s user for permission to allow the device to “Erase all data.” Agreeing to this will “Erase the phone’s data without warning by performing a factory data reset.” Now honestly folks, unless you’re not paying attention to the screen, what kind of phone owner would give permission to an app to perform a random factory reset?

If you notice that an app you are looking to install on your Android phone is asking you to approve a permission that would allow the app to access a part of your phone that has nothing to do with the “core functionality” of the app, stop in your tracks, and cancel the app installation; run away screaming with your hands up high. Well, maybe that last part is unnecessary.

Another good idea is to monitor the battery usage of your phone and network traffic looking for unexplained peaks that could indicate “malicious processes running in the background.” It always is a good idea to keep a close eye on the apps that you are installing on your handset, even those that you are installing from the Google Play Store and yes, even the App Store.

Read original article here

Denial of responsibility! TechnoCodex is an automatic aggregator of the all world’s media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials, please contact us by email – [email protected]. The content will be deleted within 24 hours.