Alert for Android Users: Beware of Malicious Chrome Update
Android users are advised to exercise caution as a counterfeit Google Chrome update is circulating, which is actually a trojan malware dubbed “Brokewell.” This deceptive application masquerades as a routine update, but once it infiltrates a device, it harvests the user’s personal information and can even grant attackers remote control over the Android device. The capabilities of “Brokewell” extend to espionage and potentially draining bank accounts by accessing financial applications.
According to the Dutch cybersecurity firm ThreatFabric, the inclusion of “broke” in the trojan’s name is no coincidence. Their analysis indicates that “Brokewell” poses a substantial risk to the banking sector by providing cybercriminals with remote access to mobile banking assets. The malware is reportedly undergoing active development, with new functionalities being added consistently.
The cunning nature of the “Brokewell” trojan lies in its ability to convincingly imitate a legitimate Chrome browser update. It employs the “overlay” technique, where a fraudulent screen overlays legitimate banking applications to capture sensitive login details such as usernames and passwords. Furthermore, the trojan uses “accessibility logging” to record every interaction on the device, including keystrokes, swipes, and app activity, which it then relays to a remote server.
This invasive malware leaves all applications on an infected device vulnerable, as it can intercept credentials and allow cybercriminals to assume control of the device without the owner’s knowledge. The threat posed by “Brokewell” is significant, and users are urged to be vigilant. It is recommended that any prompts for Chrome updates on Android devices be disregarded. For safe updates, users should rely solely on the official Google Play Store.
