One of the most popular operating systems is Android, with more users than others. Thus, it is easy for cybercriminals to target this large user base. According to the latest reports, malware has been discovered that can wipe out your smartphone and steal personal details.
A malware called BRATA is still active and targeting Android users Cleafy, a security firm, claims that the new version of BRATA was launched in December 2021 It steals users' bank account details
This Trojan is not new, it was discovered by Kaspersky in 2019 before BRATA. At the time, it targeted Brazilian users.
This Android Trojan deletes your data
Now, new security research claims that the new version is targeted at various e-banking users living in the UK, Poland, Italy, Spain, China and Latin America.
This Trojan has three variants, BRATA.A, BRATA.B and BRATA.C. The first BRATA.A was used in the last few months which adds a GPS tracking feature and can perform a factory reset.
BRATA.B has the same capabilities and has more vague code and useful overlay pages for some banks to get login details.
BRATA.C uses a primary app; It installs secondary apps with malware.
The best way to avoid this is to always check which apps are giving accessibility or admin access to the smartphone. A security firm has reported that this banking malware uses service permissions to hack your device.
A report states:
Through BRATA, TAs will allow accessibility services in the installation stages to monitor the activity performed by the victim and / or use the VNC module to retrieve personal information displayed on the device's screen (example: bank account balance, transaction history and many more). "
The Trojan first spread through push notifications to compromised websites and Google Play or other third-party Android stores. It has spread through popular messaging apps like SMS and WhatsApp.
It is unknown at this time what he will do after leaving the post. It is said that some of them are receiving phishing text messages which look like banking alert
