Vultur Archives

AppWizard

October 15, 2024

Over 200 malicious apps on Google Play downloaded millions of times

Zscaler's analysis revealed that over 200 malicious applications on Google Play accumulated nearly eight million downloads between June 2023 and April 2024. The identified malware families included Joker (38.2%), Adware (35.9%), Facestealer (14.7%), Coper (3.7%), Loanly Installer (2.3%), Harly (1.4%), and Anatsa (0.9%). In May 2023, Zscaler flagged more than 90 malicious apps on Google Play with 5.5 million downloads. The Necro malware loader was downloaded 11 million times, and Goldoson malware infiltrated 60 legitimate apps with 100 million downloads. Zscaler blocked an average of 1.7 million malware transactions per month, totaling 20 million during the analysis period. Spyware infections surged, particularly from SpyLoan, SpinOK, and SpyNote, with 232,000 blocks recorded. The most targeted countries were India, the United States, Canada, South Africa, and the Netherlands. The education sector saw a 136.8% increase in blocked transactions due to mobile malware. Users are advised to read reviews, verify app publishers, and scrutinize permissions to mitigate malware risks.

AppWizard

May 12, 2024

Android owners warned over copycat of popular app that can rinse your bank

A fake McAfee app posing as the legitimate antivirus software has been targeting Android users, leading to financial harm and unauthorized money transfers. The malware is disguised as a legitimate app and is designed to compromise online banking accounts. The scammers persuade users to install the fake app, which then allows them to gain control of the phone and execute fraudulent transactions. It is important for users to enable Google's Play Protect feature, read app reviews before downloading, delete the fake app if installed, restore the device to factory settings, and contact their bank immediately if they suspect unauthorized activity.

AppWizard

May 7, 2024

Scammers are tricking Android users into installing a fake antivirus app that’s actually malware — how to stay safe

A new malware campaign targeting Android users in Finland is using social engineering to trick individuals into installing a fake McAfee antivirus app, leading to financial losses for some victims. The scam involves receiving a text message urging the recipient to dial a specific number and then installing the malicious app by sideloading an APK file. Finnish authorities have warned about the deceptive text messages, and victims are advised to contact their bank and reset their Android device to factory settings if they have installed the fake app.

AppWizard

April 5, 2024

Alert for Android users: This malware posing as security app can steal your data – Times of India

A new iteration of the Vultur banking trojan has emerged, masquerading as a legitimate security application to siphon off sensitive data from Android users.

AppWizard

April 4, 2024

Attention Android users: A malware posing as McAfee security app can steal your sensitive data

A trojan malware disguised as a McAfee security app is targeting Android users, harvesting personal data such as passwords and credit card information. The malware, an evolved form of Vultur, is distributed through the Google Play Store since 2022. Users are tricked into downloading the fake app through SMS alerts about unauthorized transactions. To prevent malware infections, users should only download apps from verified sources like the Google Play Store and scrutinize app details before installation.

AppWizard

April 3, 2024

This Android malware poses as McAfee Security app to steal your passwords and files

A new iteration of the Vultur malware has been identified, masquerading as a legitimate McAfee Security application on Android devices.

AppWizard

April 2, 2024

Urgent text alert sent to Android users, check your phone to avoid costly error

Android phone users are being warned about a new cyber threat called Vultur malware, which can steal passwords and access private financial accounts. The malware is disguised as a fake McAfee security app and is spread through text messages prompting users to download it. It is important to be cautious with unsolicited texts and only download apps from trusted sources like the Google Play Store. If the fraudulent app is accidentally installed, it should be removed immediately and the bank should be contacted.

AppWizard

April 1, 2024

Vultur Android Malware mimic As McAfee Security App To Attacks Users

Vultur is an Android malware disguised as security software that can encrypt its command and control communications, perform keylogging and screen interaction, and distribute malicious apps through the Google Play Store. It can also disable certain apps, control the device using Accessibility Services, and bypass lock screen security measures. The malware's attack chain involves sending SMS messages with links to malicious apps, leading to full control over infected devices. Vultur is continuously evolving with new features being added, indicating ongoing development to enhance its capabilities.