Urgent warning for MILLIONS of Android phone owners – you must delete dangerous apps that steal your banking logins

CYBER researchers have unearthed two dodgy Android apps that are designed to empty your bank account.

The software is dressed up as harmless antivirus apps that are freely available on the Google Play Store.

3

3

However, once downloaded, they install malware onto the device that steals your online banking logins.

Details of the malware were featured in a report this week from Fox-IT, a division of cyber security company NCC Group.

It follows the discovery of six examples of the malware, which is known as SharkBotDropper, on the Play Store back in April.

Now an additional two with more than 60,000 downloads between them appear to have slipped through Google's security checks.

Read more about Android

SAFE SPACE

Three Android security hacks you must learn today – ignoring them could cost you

RED AHEAD

Warning for MILLIONS of Android phone owners – beware of 'red alert'

The apps discovered by Fox-IT are:

•  Mister Phone Cleaner (50,000+ downloads)
•  Kylhavy Mobile Security (10,000+ downloads) 

Google has since removed the bunch, but that doesn't protect anyone who's already downloaded them.

If you have them installed on your phone, you should remove the apps immediately and consider changing your passwords.

If users have installed either of these apps, Sharkbot can pinch their online banking credentials in a number of ways.

Most read in Tech news

SKY HIGH

Telly fans receive Sky Cinema upgrade at no extra cost with bonus perk

GOOGLY EYED

Google unveils bizarre new tool that lets AI bot make calls for you

ONE TO WATCH

Popular Freeview TV channel to benefit from huge content boost in days

AMAZ-OFF

Amazon Fire Stick users left fuming as popular TV feature is removed

It's a banking trojan known for luring victims into entering their login details in spoofed popups.

The precious data is then secretly sent off to hackers who can then access everything including emails, social media and banking accounts.

The trojan can reportedly also steal online logins by logging key presses and by letting attackers remotely access infected devices.

Once they have access to your online bank account, they can set transfers in motion.

Hackers 'speak Russian'

Experts at discovered six apps loaded with the malware back in April.

The dubious apps were downloaded more than 11,000 times, according to Check Point Research who uncovered the scam.

More than a third of victims are believed to be from the UK and the rest have been mostly traced back to Italy.

They have since been removed from the Play Store.

Experts assume the perpetrators speak Russian from their investigation.

Adding to suspicion, they noticed the apps were programmed not to work against anyone located in China, India, Romania, Russia, Ukraine or Belarus.

But, they said they don't have enough evidence to point the finger at who exactly is behind it.

"Looking at the install count we can assume that the threat actor hit the bulls-eye for their method of malware spread," said Alexander Chailytko, a cyber security at Check Point Software.

"The threat actor strategically chose a location of applications on Google Play that have users’ trust.

"What’s also noteworthy here is that the threat actors push messages to victims containing malicious links, which leads to widespread adoption.

READ MORE SUN STORIES

SIGN IT UP

Speeding fines for thousands of drivers may be VOIDED over street sign loophole

AIR WE GO

Ryanair's five new flights launching from UK airport in time for summer holidays

Read More on The Sun

I'M FLOORED

Two-bed home could be yours for a low £4k - but it's missing a key feature

TIME WASTERS

I’m a cleaning pro, 4 products you should ditch that are a waste of money

"All in all, the use of push-messages by the threat actors requesting an answer from users is an unusual spreading technique.

"I think it’s important for all Android users to know that they should think twice before downloading any antivirus solution from the Play Store."

3

Best Phone and Gadget tips and hacks

Looking for tips and hacks for your phone? Want to find those secret features within social media apps? We have you covered...

• How to delete your Instagram account
• What does pending mean on Snapchat?
• How to check if you've been blocked on WhatsApp
• How to drop a pin on Google Maps
• How can I change my Facebook password?
• How to go live on TikTok
• How to clear the cache on an iPhone
• What is NFT art?
• What is OnlyFans?
• What does Meta mean?

Get all the latest WhatsApp, Instagram, Facebook and other tech gadget stories here.

We pay for your stories! Do you have a story for The Sun Online Tech & Science team? Email us at [email protected]