Thursday, April 24, 2014

ESET identifies malware that uses Facebook to steal data ... - Administrators

Research Laboratory ESET Latin America identified a malicious application responsible for simulating a dual authentication to Facebook, but that is intended to steal personal and banking data of users of smartphones with the Android system.

 

malware allows user activities are monitored, which includes the audio of phone calls, SMS, passwords, bank data, among others.

 

scam goes like this:

 

Through web pages infected by criminals, the user automatically downloads a file that will be encrypted and hidden inside the computer. By accessing the infected computer that Facebook and add username and password, the user will see a page with the same layout as the original site, but offering the installation of a dual authentication, so that navigation becomes safer.


 

By accepting the installation of dual authentication system, the user must enter their cell phone number and operating system. If you have the Android system, you receive an SMS, and by clicking on the link received, performs the download of an alleged Facebook application to be installed dual authentication.


 

open the app on your smartphone, the user is automatically infected iBanking (malware name) and all your information is automatically sent to the cybercriminal. If you access the internet banking by phone with the malware installed, the offender will have access to all your bank details.


 

Dual Authentication by SMS currently used by banks does not prevent the problem, since the criminal also has access messages texto.É always recommend using a proactive security solution specific to smartphones, and never click on untrusted links .

 

“The iBaking was detected by ESET as Android / Spy.Agent.AF, and it is an implementation of the most complex and well made compared to other banking malware discovered earlier because it can access all information from users via smartphone. How to install iBanking is quite common, but this is the first time they use a mobile application that targets Facebook users to perform a fraud, “says Jorge Di Camillo, Country Manager ESET Brazil.

 

“Although the two-factor authentication is present on Facebook for some time, we have identified a growing number of people are starting to use this tool of protection, making the theft of accounts through traditional methods ineffective.” adds Di Jorge.

No comments:

Post a Comment