Trojan alert! Malware originally detected by ESET in November 2018 would have the ability to conduct banking transactions by using the accessibility services of Android. This malware, spotted in a application called Optimization Android, targets application users PayPal.
>> Google removes 13 Android apps containing malware
This malware automates the transfer of $ 1000 by PayPal to another account, and this even if the smartphone is protected by double authentication. To achieve its goals, Optimization Android has disguised itself as an optimization tool. It is not available on the official Play Store, which should serve reminder: do not download an application outside the Play Store.
After installation, the app installs an accessibility service called “Enable statistics” and requests authorization to access this service. It is precisely the “Retrieve Window Content” function that poses the problem, because it allows hackers to emulate clicks and other user actions. The offending application then sends a notification telling you to log in urgently to your PayPal account. According to ESET, malware then takes just five seconds to steal $ 1000 from your account. The attack does not stop there… Optimization Android adds overlay PayPal login screens to legitimate apps such as WhatsApp, Skype, Viber or even Google Play, to indulge in theft of bank information (or email identifiers) through a good old fishing technique.
>> To read: Antivirus: what is the best security suite?