Brokewell Archives

AppWizard

August 7, 2024

Chameleon Android Banking Trojan Targets Users Through Fake CRM App

Cybersecurity experts have identified the Chameleon Android banking trojan, which is targeting Canadian businesses, particularly in the hospitality sector. Disguised as a Customer Relationship Management (CRM) application, the trojan began its campaign in July 2024, expanding its reach from previous targets in Australia, Italy, Poland, and the U.K. The malware is designed to exploit Business-to-Consumer (B2C) employees and can bypass security measures in Android 13 and later versions. Upon installation, it presents a fake login interface and prompts users with deceptive error messages to reinstall the app, which activates the trojan. Chameleon is capable of executing on-device fraud and can transfer funds from users' accounts while harvesting sensitive information such as credentials and geolocation data. If it compromises a device with access to corporate banking, it poses significant risks to organizations.

AppWizard

June 3, 2024

Be Careful: These Android Apps Are Installing Malware, Stealing Your Data

More than 90 Android apps on Google Play Store have been found to contain malware, posing as PDF or QR code readers. The malicious apps secretly collect data and display fake banking login pages to steal financial credentials. Some of the apps identified include "PDF Reader & File Manager" and "QR Reader & File Manager." Other malware families distributed via the Play Store include Joker, Adware, Facestealer, and Coper. Just because an app is on the Google Play Store or Apple's App Store does not guarantee its safety, as banking trojan malware like "Brokewell" has recently emerged.

AppWizard

May 19, 2024

Urgent warning issued to Android users over bug that can empty bank accounts

Brokewell is a malicious software posing as a Google Chrome update that can give cybercriminals access to sensitive information, including banking applications. The discovery of Brokewell highlights the importance of being vigilant when downloading updates, especially from reputable sources like Google Chrome. Threatfabric has shown that distinguishing between legitimate updates and imposters like Brokewell can be difficult. Brokewell is a significant threat to the banking sector and uses overlay attacks to steal user credentials and take over devices. It is important for Android Chrome users to be cautious during installations to protect their personal information from being compromised.

AppWizard

May 2, 2024

Warning Against New Brokewell Android Malware That Spreads Through Fake Chrome Update, Targets Banking Apps

The Brokewell malware is a new cyber threat targeting Android users, disguised as a fake Chrome update. It can infiltrate banking applications, create overlay screens to steal login credentials, and bypass multi-factor authentication systems. Users are advised to be cautious of unsolicited software updates and download apps only from reputable sources.

AppWizard

May 2, 2024

Scam alert for Android users as ‘Brokewell’ malware threatens users’ bank accounts

A new malware threat called "Brokewell" has been detected by cybersecurity experts at ThreatFabric. This sophisticated malware mimics a Google Chrome update and can compromise bank accounts through advanced Device Takeover capabilities. The malware uses overlay attacks to harvest user credentials and is continuously being enhanced by its creators. Users are advised to exercise caution when downloading apps and take immediate steps if they suspect an app to be malicious.

AppWizard

April 29, 2024

Android malware posing as a fake Chrome update is stealing banking app logins

A new Android malware named Brokewell is masquerading as an update for Google Chrome, distributed through a counterfeit browser update page. It uses overlay attacks to steal user credentials and cookies, as well as employs accessibility logging to capture all actions on the infected device. Once cybercriminals have gathered enough private data, they can exploit the malware's remote control features to carry out unauthorized activities on the device.

AppWizard

April 28, 2024

Major alert! Fake Chrome update for Android installs trojan that will access your banking apps

Android users should beware of a trojan malware called "Brokewell" posing as a fake Chrome update, which can steal personal information, grant remote access to the device, and potentially drain bank accounts. The malware uses overlay techniques to capture sensitive login details and record interactions on the device. Users are advised to ignore any prompts for Chrome updates and only rely on the official Google Play Store for safe updates.

AppWizard

April 27, 2024

New ‘Brokewell’ Android malware can steal user data and access banking apps

- A strain of malware known as "Brokewell" is targeting Android users by masquerading as an update for Google Chrome - Brokewell has the ability to harvest user data, infiltrate banking applications, conduct espionage, and grant attackers remote control over affected devices - The malware gains entry by tricking users into installing a fake update that resembles legitimate Chrome prompts but contains grammatical errors - Brokewell sets up an overlay on the device's screen to capture login credentials, hijack session cookies, and transfer funds - The malware is under active development and is expected to be promoted as a rental service in the future, leading to more cyberattacks - Users can protect themselves by being vigilant when downloading updates or new applications, ensuring Google Play Protect is active, and considering installing a reputable Android antivirus application.