Android malware posing as Covid-19 contact tracing apps

Android malware posing as Covid-19 contact tracing apps

Malicious Contact Tracing App

(Picture credit score: EclecticIQ)

As nations around the globe began offering Covid-19 contact tracing apps to their residents, cybercriminals used this to their benefit to distribute Android malware, in accordance with a new report from EclecticIQ and ThreatFabric.

Researchers from each corporations as nicely others recognized malicious Android apps that had been disguised because the official contact tracing functions for Colombia, India, Singapore and Indonesia. Surprisingly, the pattern from India was launched simply 13 days after the official Indian contact tracing app was made out there on the Google Play Store.

After analyzing the samples, EclecticIQ and ThreatFabric discovered they used the commodity and open supply malware SpyMax, SpyNote and Aymth. The attackers additionally repackaged functions with Metasploit to offer them distant entry trojan capabilities.

To distribute their malicious contact tracing apps, the cybercriminals relied on phishing links that had been designed to trick customers into putting in their apps.

Primarily based on the findings of EclecticIQ and ThreatFabric’s report, it’s virtually sure that menace actors will proceed to make use of commodity and open source-based malware disguised as legit contact tracing apps for monetary achieve.

The low barrier to entry offered by these instruments mixed with the continued rollout of contact tracing apps by nations around the globe, presents a continued monetary alternative for cybercriminals into the close to future.

Cyber menace intelligence specialist at ElecticIQ’s Fusion Middle, Peter Ferguson defined in a press release that customers ought to solely obtain Covid-19 contact tracing apps from official app shops, saying:

“Customers ought to by no means obtain contact tracing android functions from hyperlinks despatched to them or from third get together shops. If they’re desirous about downloading their nation’s contact tracing software, they need to use the official website or the Google Play Retailer.”

All through the pandemic, cybercriminals have repeatedly tried to capitalize on the disruption it has induced worldwide by utilizing Covid-19 as a lure to trick customers into putting in malware on their units. They may seemingly proceed to launch related campaigns due to how profitable they have been to this point. Which means that companies and shoppers want to stay vigilant in the case of Covid-19-related threats and scams.

Read More