Banking Trojan malware affects Android phone users; more deadly than its previous form

This news is for all Android phone users. The Trojan Medusa is back after a year and is now even more dangerous. The malware had in 2020 affected the Turkish business establishments first. It has now expanded to other countries in Europe as well as the US. In 2022, many European countries were affected by this. This evolving virus also indicates that cyber security cannot be ignored and one will have to take precautions for ensuring a safe cyber space. It has affected many devices and there have been many loses sustained by the Android users.

How does the Malware avoid detection?

Since July 2023, medusa attacks are back with a new version. Cyber security experts noted that there is a record number of downloads of the “4K” Sports application. This app is being used to put the malware on people’s phones.

Also Read: Nate Diaz vs Jorge Masvidal fight: Fight card, Main event and streaming details


Many malware enter the phone of individuals by asking for permissions to access various applications. This is a key requirement that individuals should guard against. The updated Medusa malware is reported to have 17 fewer commands in addition to five new ones such as taking permission to take screenshots.

It will not ask for too many permissions so as to avoid detection. Hackers are also using fake applications including Google which are being used to hack into devices using this malware.

However, Google has clarified that they had already taken strict measures to avoid such attacks and Google Play Protect has secured the users' devices.

“Based on our current detection, no apps containing this malware are found on Google Play. Android users are automatically protected against known versions of this malware by Google Play Protect, which is on by default on Android devices with Google Play Services. Google Play Protect can warn users or block apps known to exhibit malicious behavior, even when those apps come from sources outside of Play", a Google spokesperson on the recent malware attacks.

Continuous innovation:

It has been reported that the hackers are continuously updating the malware and making it sleek. This is being done to avoid detection and increase the ability of the malware to infect a greater number of devices. Initially, it had targeted only financial institutions in Turkey. Presently, this is also targeting Britain, Italy, and the US amongst others.

Cyber-security measures:

It is important to take certain cyber-security measures. Briefly, it is important to upgrade one’s anti-virus software and ensure that it is strong. It is also important to ensure that software is downloaded from the correct sources. Other methods are to stay vigilant against phishing attempt, setting up a two-factor authentication among others.

FAQs:

What is the Stuxnet?
This has been developed by the US and Israel. In the past, it has paralyzed Iran’s nuclear program. It controlled the programmable logic controllers. It caused a massive loss to Iran’s nuclear program.

What does a malware do?
Once a system is infected, the entire system is affected. The hacker can control the system, spy on the system and paralyze the computer system.