Nothing funny about this app that has a Trojan

By Balamurugan Selvaraj Published on Apr 17, 2017 05:00 PM IST

Everyone of us likes and loves humour and comedy. However, in the tech world, experts say it is better to stay away from humorous things for a while.

What they mean here is funny video apps on PlayStore.

Recently, Niels Croese, a security researcher from Securify B V Firm, found Dubbed BankBot, an unpopular Android Trojan, hiding inside some funny video apps in PlayStore.

It has to be noted that the infected banking Trojan has a past of targeting customers of nearly 420 banks around the world, which includes Citibank, ING, etc.

According to his research, the funny video apps behave normally like other apps. Similar to slow poison, the Trojan inside the app starts the action in the background of other apps, which harm the users.

Though the Trojan is similar to other banking Trojans, there are two different things that make its activities outstanding. One is its capability of targeting victims and the other is the use of DexProtector tool to remove the app’s code.

After the report of the researcher, Google has removed this malicious app from its PlayStore. Also, it does not mean that they are completely removed. And they are still alive in many funny videos app in PlayStore.

HOW DOES THE TROJAN WORK?

Like slow poison. After installation, it allows the users to watch funny videos from the streamed sites. While the users enjoy themselves, the Trojan starts its work from behind.

It blocks the SMS and display overlays to steal banking information. Once the app is downloaded, it requests administrative rights from the user and if granted, then the entire controls of the smartphone get infected with this malware.

Once the administrative rights are got, it waits for the user to access the banking app which is configured in the Trojan’s programme. When the banking app is opened, it displays an overlay page on the app’s top, which sends the credentials to hackers.

HOW TO PROTECT?

Keeping the system up-to-date with well-equipped anti-virus will prevent the smartphone from getting affected. Avoid downloads from untrusted sites and apps. Finally, beware of unknown wi-fi hotspots and app permissions. If handled properly, the chances of getting affected can be reduced.