Strategy, Threat intelligence, Threats, Malware

TeaBot malware steals bank info from Android devices

June 1, 2021
ZDNet reports about TeaBot, a trojan malware also known as Anatsa, that uses fake Android applications to steal bank and other sensitive details from infected smartphones.

The malware disguises as fake versions of popular Android applications, including antivirus apps, audiobook players and the VLC open-source media player, and uses names and logos that are slightly different from the real ones, according to Bitdefender cybersecurity researchers.

The malicious apps are hosted on third-party websites, but are not distributed by the official Google Play Store. These apps use a fake ad blocker app to lure victims into downloading and installing the app, which often claims that a malicious app has damaged the smartphone. Clicking a link to solve the issue will then download TeaBot onto the Android device.

Bitdefender researchers advise users to “never install apps outside the official store. Also, never tap on links in messages and always be mindful of your Android apps’ permissions.”
Jill Aitoro

SC Media Editor in Chief Jill Aitoro has 20 years of experience editing and reporting on technology, business and policy. She also serves as editorial director at SC Media’s parent company, CyberRisk Alliance. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media’s VARBusiness and CRN and Penton Media’s iSeries News.

prestitial ad