Security

How Malware Uses Fake Login Screens to Gain Personal Info

Session-hijacking is now a very real concern for cell phone users worldwide. Recently, a threat known as “overlay malware” has begun appearing on Android devices. Impersonating login pages from popular websites, this malware steals a user’s name and password through keystroke-logging. These hacked sites are often ones that hold a person’s most confidential information, such as their bank and social media accounts. Giving up this personal data to hackers can lead to disastrous consequences, such as identity fraud and theft. Click here to scan your device for malware and keep your personal information safe:

In order to keep your personal information safe, you should regularly scan your device for malware, especially after downloading any new apps or accidentally clicking suspicious-looking links. DFNDR’s Full Virus Scan feature is an excellent weapon in the fight against malware. The Full Virus Scan searches through your entire phone, looking through every app and inch of storage. It will check your phone and your phone’s SD card for any malware, and quickly deal with any security breaches it finds.

Recent Appearances of Keystroke-Logging Malware

Back in August 2016, keystroke-logging malware had infected Google’s AdSense Network. The Moscow security company warned Android users about a malware that would attack when they visited certain Russian news sites. These unsuspecting visitors didn’t even need to click on anything. The so-called “last-browser-update.apk” would simply download itself onto their phone. Turns out, last-browser-update.apk is a banking Trojan. Banking Trojans are specifically designed to steal a user’s online banking information.

Similarly, Netflix suffered a phishing scan at the beginning of 2017. In January, users were targeted with emails, pretending to be sent by the popular streaming site. These phishing emails would ask for the user’s login details, then proceed to acquire their credit card information. This keystroke malware was so thorough in its design that it even gave Netflix users the option of logging in through Facebook. When the phishing attack ended, it brought users to the real Netflix page. Click here to protect yourself from phishing attacks and malicious websites with the Anti-Hacking feature:

Indeed, perhaps the most troubling aspect of fake login screens is how convincing they’ve become. Hackers are very, very detail-oriented in their approach now. So, it’s best to protect your Android with Full Virus Scan, running regular scans, and Anti-Hacking. You never know what new threats could be lurking out there.

PSafe Newsroom

The dfndr blog is an informative channel that presents exclusive content on security and privacy in the mobile and business world, with tips to keep users protected. Populated by a select group of expert reporters, the channel has a partnership with dfndr lab's security team. Together they bring you, first-notice news about attacks, scams, internet vulnerabilities, malware and everything affecting cybersecurity.