Thu. Dec 5th, 2024

Threat Fabric revealed the discovery of a new malware called “Brokewell”, targeting users’ bank accounts on “Android” devices.

The program appears as a fake update to the browser “Google Chrome”, and “Brokewell” is not limited to collecting phone data and call history, but also determines the geographical location of the user, records his voice, and accesses his other sensitive information.

The program has specifically targeted prominent financial applications such as Klarna and the digital authentication service ID Austri, which exposes sophisticated techniques in hacking operations.

The software uses dangerous techniques including “overlay attacks”, where it creates a fake interface that mimics a banking app to trick users into revealing their personal data and access credentials.

It can also steal temporary cookies that apps use to verify identity, allowing security measures such as two-factor authentication to be bypassed.

Experts warned that “Brokewell’s” ability to bypass security measures could pose a significant threat to devices running Android 13 and later.

The latest hacking operations against Android devices was the program known as “Chameleon”, which disables the fingerprint or face unlock feature and uses the stolen personal identification number (PIN), and the program also exploited a vulnerability in the Android access service to steal sensitive information and launch complex attacks.

 

Hackers threaten an Italian oil company operating in Libya by publishing its confidential data

Related Post