Cleafy, a company specialized in cyber security, announced that it has discovered a new malicious program or malware called TeaBot, a Trojan designed to affect mobile devices with Android operating system that this year has already attacked at least 60 European banks due to its ability to steal victims’ credentials, access their SMS and remotely control the phone.<\/p>\n\n\n\n
This threat was initially discovered in January, and on March 29 the first injection against Italian banks was detected, while at the beginning of May it began to expand and has also affected entities in Belgium and the Netherlands. The ‘malware’ has managed to extract user information from more than 60 European banks, and in fact includes text in different languages, among which is Spanish and also Italian and German. TeaBot, which does not belong to any known ‘malware’ family, abuses the Accessibility Services of the Android operating system, a technique commonly used by banking Trojans.<\/p>\n\n\n\n
On a technical level it is very similar to Flubot. TeaBot hides itself under the name DHL, UPS, VLC MediaPlayer or Mobdro, that is, it pretends to be other applications. Once we install it, it asks us for accessibility permission and, when it has it, we have already fallen into the trap.<\/p>\n\n\n\n
Once the Trojan manages to infect the user’s device, it manages to manipulate the system’s screen overlay functions in order to obtain the credentials of the accounts in digital banking services and the credit card information of the victims.Undoubtedly, this malware is capable of many things and that is why it is very dangerous.<\/p>\n\n\n\n
\u25b8Send and intercept SMS messages<\/em><\/strong><\/p>\n\n\n\n \u25b8Read phone status<\/em><\/strong><\/p>\n\n\n\n \u25b8Modify sound settings to silence the phone<\/em><\/strong><\/p>\n\n\n\n \u25b8Show a pop-up about other apps so that we accept permissions<\/em><\/strong><\/p>\n\n\n\n \u25b8Delete apps without permission<\/em><\/strong><\/p>\n\n\n\n See also: Cleafy, a company specialized in cyber security, announced that it has discovered a new malicious program or malware called TeaBot, a Trojan designed to affect mobile devices with Android operating system that this year has already attacked at least 60 European banks due to its ability to steal victims’ credentials, access their SMS and remotely […]<\/p>\n","protected":false},"author":1,"featured_media":2688,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[36],"class_list":["post-2687","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity"],"yoast_head":"\n
ADB Miner \u2013 Malware that mines on Android Devices<\/a>
What kind of spyware does Android face<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"