![]() At the same time, it’s a good idea to limit the number of apps you have installed on your phone overall. It’s currently being distributed using Zombinder on the Play Store, so you need to be extremely careful when installing new apps on the best Android phones, even if they do come from official app stores. If you haven’t caught on yet, Xenomorph v3 is a very serious threat that can drain your bank accounts and take over your other online accounts, since it automatically steals passwords. With these session cookies in hand, a hacker can then hijack a web session and take over your accounts. It does this by launching a browser window of a legitimate service and tricking a victim into entering their credentials. Xenomorph v3 even includes a cookie stealer that can take your phone’s cookies from the Android Cookie Manager. However, not all banks currently offer this option. Instead of using SMS text messages for MFA in your banking apps, you can get around this by using an authenticator app like Google Authenticator or Microsoft Authenticator instead. ![]() The malware’s ATS framework also allows it to bypass multi-factor authentication ( MFA) which would normally be used to block these types of automated transactions. If that wasn’t bad enough, Xenomorph v3’s ATS framework allows cybercriminals to automatically extract credentials, check account balances, steal money and more from an infected Android smartphone. Unlike malicious apps, these are regular Android apps that contain a malicious payload. This platform is particularly dangerous due to the fact that the hackers who created it have found a way to add malware to legitimate Android apps. As such, it will be sold to other cybercriminals through a subscription model to be used in their attacks.Īt the moment though, Xenomorph v3 is currently being distributed through the ‘ Zombinder’ platform on the Google Play Store. ![]() This hints at the fact Hadoken Security, which created the malware, aims to distribute it using a malware-as-a-service ( MaaS) business model. After looking at samples of Xenomorph v3, ThreatFabric discovered a dedicated website advertising the latest version of the malware. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |