“This App Sends All Your Data to Russia, Delete it Immediately”

Hackers’ New Tactics: Cloned Apps and WhatsApp Scams

Hackers are constantly on the lookout, devising new strategies to steal personal data from unsuspecting individuals.
One of the most commonly used techniques is the deployment of apps containing malware, which can access personal information once installed.

The perpetrators of these scams often follow a predictable pattern, embedding malicious code within generic apps, typically created ad hoc for this purpose.
While these apps generally do not pass the malware checks on smartphones and are quickly flagged, there are exceptions to this rule.

The latest warning concerns a clone of Google Chrome circulating online, causing significant damage.
Experts at AG Data have reported the existence of a clone version of Google Chrome for Android making rounds on the web.
The interface presented is identical to that of the renowned browser, but once installed, this app gains permission to access calls and read SMS messages.
All collected data is then sent to servers located in Russia.

Despite functioning similarly to the original app, users may experience odd notifications offering lottery-winning tips.
To claim the prize money, users are only required to provide their phone number and payment details.
However, the condition insists on keeping the application installed on the phone.
Needless to say, if the phone number and payment details are entered, hackers will obtain this information for potential fraudulent use.

The Chrome clone app not only has the potential to steal sensitive data but can also bypass two-factor authentication if it is active.

Currently, the attack is targeting mobile phones in Russia.
Nonetheless, experts at AG Data believe that this malware campaign may take on a global scale.
Similar to Google Chrome, clones of other popular apps containing malware capable of stealing sensitive data from smartphones and monitoring users could appear online.

Detecting Original Apps

A key warning sign is receiving spam notifications related to winnings.
If such notifications are frequent, they likely originate from a cloned app.

If you suspect that malware is running in the background of your phone, it’s advisable to uninstall any apps installed in recent days.
Always opt to download apps from official platforms like the App Store or Google Play for security assurance.
Additionally, refrain from deactivating the setting on your Android device that prohibits app installation from unknown sources.
It’s also crucial to avoid entering sensitive data on apps from unknown sources.

WhatsApp’s Latest Scam

Besides the clone of Google Chrome, a new scam has recently surfaced on WhatsApp aiming to hijack profiles.
Users receive a message from a known contact prompting them to provide a code that will be sent to their phone.
The sender’s phone is also compromised by hackers who then contact others in the contact list in a chain reaction.

Under no circumstances should you divulge the code to these individuals, as it grants authorization to change your WhatsApp account’s phone number.
Once the number is altered, you will permanently lose access to your WhatsApp profile.
Hackers can then freely modify the profile picture, name, and surname, utilizing the account fraudulently.