The Escobar Android malware app was first spotted by the bug hunter MalwareHunterTeam. And according to the report, the malware is imitating the McAfee antivirus app.
Users are downloading the app confusing it with the real one and becoming the victim of the malware. The malware in the app is capable of stealing SMS text, media files, and more. It’s also controlling other features like calls, location tracking, and phone camera.
The ‘Escobar’ malware has so far targeted customers from 190 financial institutions across 18 different countries.
How to stay safe from Escobar Android Malware?
This Android malware can steal Google Authenticator multi-factor authentication codes. Which are then sent to devices when someone tries to login onto email or online banking services.
Getting access to Google Authenticator multi-factor authentication codes sounds scary as they can allow hackers to get easy access to users’ personal and financial details.
And according to the report “everything that the malware collects is uploaded to the C2 server. Including SMS call logs, key logs, notifications, and Google Authenticator codes”.
Unlike other Android malware, ‘Escobar targets users via APK files installed on the web. Most of the other malware usually appears in the form of applications on the Google Play store.
This one overlays login forms to hijack user interactions with online banking apps and websites. In most instances, Escobar-like viruses take over users’ banking accounts and perform unauthorized transactions.
How to keep yourself safe?
- Avoid downloading apps from third-party app stores.
- Turn on the Google Play Protect.
- Use two-factor-authentication.
How to Remove Escobar Malware from Android Smartphone
- Backup only media files on your Google account.
- Put the phone on Airplane Mode.
- Remove SIM card and perform a Factory reset.
- Report to your bank in case you lost any money or find any suspicious activities.
So keep your device safe and download apps only from authentic and legit app stores. Or just completely avoid downloading from third-party stores. Comment below and let us know if you have had a bad experience with malware yourself.