Alien malware steals passwords from 226 Play Store apps

New malware attacks Android smartphones. Called Alien, this malware seeks to steal the passwords of 226 popular Android apps available on the Google Play Store. Among the targets of the malware are popular applications such as WhatsApp, Facebook, Snapchat, Instagram, Amazon, Twitter and Coinbase. The apps of many French banks are also targeted.

android malware play store - Alien malware steals passwords from 226 Play Store apps

ThreatFabric's computer security researchers noted thata trojan called Alien currently tackles more than 226 Android apps. Based on the code of Cerberus, a dangerous virus capable of siphoning off your bank account, Alien is designed to steal the passwords and credentials of its victims.

In detail, the malware is able to steal your SMS, send them without your knowledge, collect the name of your contacts, your location, install an application and recover the authentication codes received by a service. online. This way, hackers gain access to your accounts. In most cases, the malware was distributed by a fraudulent phishing site, warns ThreatFabric. “Much of it appears to be distributed through phishing sites, for example a malicious page tricking victims into downloading bogus software updates or bogus Corona apps” explains Gaetan van Diemen, IT security researcher at ThreatFabric.

On the same subject: the Android malware Joker is back, quickly uninstall these 17 apps from the Play Store!

Here is the list of Android applications targeted by Alien

The Alien malware targets a multitude of Android applications available on the Google Play Store. In malware targets, we also find a lot banking applications. Note the presence of several French banks, such as Caisse d'Epargne, Boursorama, ING or Crédit Mutuel. Hackers therefore seek to strip the contents of the bank accounts of their victims. However, in most cases, usernames and passwords will quickly be resold on dark web black markets at a high price. Bank identifiers sell for around $ 100 in Bitcoin, of course, everything depends on the content of the bank account.

The list of applications in the malware finder

  • Coinbase
  • Blockchain Wallet. Bitcoin, Bitcoin Cash, Ethereum
  • BBVA Spain
  • Bankinter Móvil
  • Santander
  • UnicajaMovil
  • Bankia
  • EVO Banco móvil
  • Kutxabank
  • ruralvía
  • Akbank
  • BBVA Mobile Guaranteed
  • QNB Finansbank Mobile Banking
  • Connect for Hotmail & Outlook: Mail and Calendar
  • CEPTETEB
  • Yapı Kredi Mobile
  • Enpara.com Cep Şubesi
  • Halkbank Mobil
  • Kuveyt Türk
  • Ziraat Mobile
  • İşCep – Mobile Banking
  • VakıfBank Mobil Bankacılık
  • Ibercaja
  • ABN AMRO Mobiel Bankieren
  • IKO
  • mBank PL
  • Interbank APP
  • Rakuten Bank
  • freedomplus
  • Banca MPS
  • Gmail
  • mail.com mail
  • BNL
  • ING Italia
  • Yahoo mail
  • norisbank App
  • La Mia Banca
  • HVB Mobile Banking
  • Commerzbank Banking – The app at your side
  • VR Banking Classic
  • Postbank Finanzassistent
  • TARGOBANK Mobile Banking
  • comdirect mobile App
  • DKB-Banking
  • Sparkasse Ihre mobile Subsidiary
  • Consorsbank
  • CA24 Mobile
  • Boursorama
  • The Caisse d'Epargne
  • Mutual credit
  • ING Direct
  • My Accounts – LCL
  • Banque Populaire
  • Agricultural credit
  • The Societe Generale App
  • NAB Mobile Banking
  • CIBC Mobile Banking®
  • Halifax: the banking app that gives you extra
  • St. George Mobile Banking
  • mywireless
  • Chase Mobile
  • Fifth Third Mobile Banking
  • iMobile by ICICI Bank
  • UniCredit Mobile Banking
  • Scrigno App
  • Microsoft Outlook
  • Bank of America Mobile Banking
  • Capital One® Mobile
  • SunTrust Mobile App
  • USAA Mobile
  • U.S. Bank – Inspired by customers
  • Wells Fargo Mobile
  • BMO Mobile Banking
  • UBI Banca
  • RBC Mobile
  • Intesa Sanpaolo Mobile
  • ING Mobil
  • Odeabank
  • Postepay
  • ŞEKER MOBİL ŞUBE
  • CommBank
  • Google play
  • Banca Digital Liberbank
  • ING Spain. Banca Móvil
  • Cajasur
  • Banca Móvil Laboral Kutxa
  • Mi Banco db
  • Banco Sabadell App. Your mobile bank
  • BBVA Net Cash | ES & PT
  • Santander Empresas
  • PayPal
  • Santander Mobile
  • Banco Caixa Geral Spain
  • Pekao24Makler
  • PekaoBiznes24
  • Facebook
  • imaginBank – Your mobile bank
  • WhatsApp
  • Snapchat
  • Twitter
  • Telegram
  • Instagram
  • Viber Messenger – Messages, Group Chats & Calls
  • CaixaBank
  • PeoPay
  • eBay
  • Amazon
  • Getin Mobile
  • BCP Banking App
  • Citi Handlowy
  • ABANCA- Banca Móvil
  • NETELLER – fast, secure and global money transfers
  • Simplii Financial
  • TD Canada
  • ČSOB Smartbanking
  • Bitcoin Wallet – Airbitz
  • ePayments: wallet & bank card
  • N26 – The Mobile Bank
  • ING Australia Banking
  • Payoneer – Global Payments Platform for Businesses
  • CIMB Clicks Malaysia
  • plusbank24
  • Skrill – Fast, secure online payments
  • Mycelium Bitcoin Wallet
  • Santander UK
  • OTP SmartBank
  • K PLUS
  • KMA
  • SCB EASY
  • Netflix
  • Bendigo Bank
  • My Citibank
  • hongleongconnect
  • Bank of Melbourne Mobile Banking
  • Volksbank hausbanking
  • My BNP Paribas Accounts
  • Credit du Nord for Mobile
  • BusinessPro Lite
  • BPI APP
  • NB smart app
  • Santander Particulares
  • BOQ Mobile
  • La Poste – Postal Services
  • CIC
  • Fortuneo, my bank accounts & online stock market
  • ASB Mobile Banking
  • iBiznes24 mobile
  • Corp App
  • ScotiaMóvil
  • credemmobile
  • Carige Mobile
  • Mobilni Banka
  • netbk Japan
  • CUA Mobile Banking
  • raiffeisenbank
  • Bank Austria MobileBanking
  • Barclays
  • BOCHK
  • HSBC Mobile Banking
  • ANZ Australia
  • Bankia Wallet
  • Bank Australia app
  • Beyond Bank Australia
  • Greater
  • Sabadell Wallet
  • Santander Wallet
  • The postal bank
  • cajamar
  • bcpbankingapp
  • ANZ Shield
  • Fibabanka Corporate Mobile
  • myAlpha Mobile
  • mbanking
  • eurobankefg
  • Popular
  • Krungthai NEXT
  • BBVA Wallet Spain. Mobile Payment
  • BBVA México (Bancomer Móvil)
  • Santander Argentina
  • Mercado Libre: compra fácil y rápido
  • Santander Money Plan
  • Dhanlaxmi Bank Mobile Banking
  • centralbank
  • mahabank
  • Kotak – 811 & Mobile Banking
  • sbanywherecorporate
  • HDFC Bank MobileBanking
  • SambaMobile
  • Scotiabank Colpatria
  • Bancolombia App Personas
  • Westpac Mobile Banking
  • suncorpbank
  • P&N BANKING APP
  • ING Bankieren
  • Enpara.com Şirketim Cep Şubesi
  • Google play games
  • TBC Bank
  • ActivoBank
  • TSB Bank Mobile Banking
  • Royal Bank of Scotland Mobile Banking
  • NatWest Mobile Banking
  • Barclays US
  • Skype
  • Bitcoin Wallet by SpectroCoin
  • Emirates NBD
  • Alawwal Mobile
  • Citi Mobile®
  • TD Bank (US)
  • Union Bank Mobile Banking
  • ING Business
  • SpardaSecureApp
  • Bankwest
  • HSBCnet Mobile
  • permanent tsb
  • Bank of Melbourne Business App
  • BankSA Business App
  • St. George Business App
  • Westpac Corporate Mobile
  • National Bank of Canada
  • Servus Mobile Banking
  • Luno: Buy Bitcoin, Ethereum and Cryptocurrency

For now, Google has not yet found solutions to protect the applications targeted by the malware. To avoid falling into pirate nets, ThreatFabric advises not to install applications from an unknown website. Above all, do not grant permissions to applications drawn from the web. To steal your messages, fraudulent applications infected with Alien malware require multiple permissions during installation.

Source: ThreatFabric

Categories Tech

Leave a Comment