Viruses and malware are nothing new to Android. While Google has done its best to create a secure system to protect your device and sensitive information, every now and then a malicious virus manages to sneak through.
Researchers have discovered an Android Trojan, named FlyTrap, which has compromised more than 10,000 devices across 144 countries. It uses a variety of methods to spread, through social media hijacking, third-party app stores, and side-loaded applications. The malware is still active and a threat to those unaware.
What Is the FlyTrap Malware?
The FlyTrap malware hijacks a user's Facebook accounts. The information collected from the victim's Android device includes their Facebook ID, location, email address, IP address, and the cookies and tokens associated with the Facebook account.
These hijacked Facebook sessions are then used to spread the malware by sending personal messages with links to the victim's contacts. The Trojan also uses the victim's geolocation details in propaganda and disinformation campaigns to spread to a wider audience.
These types of social engineering techniques are some of the key methods used to spread malware by cybercriminals.
How Does the FlyTrap Malware Work?
The FlyTrap malware disguises itself through a variety of mobile apps that provide users with free coupons for various services such as Netflix and sports voting campaigns where you're asked to determine the best players and teams.
The app engages the user and eventually asks them to log in to their Facebook account to cast their vote or collect the coupon code.
As this is all fake, after logging in, the user is presented with a message stating that "Coupon expired after redemption and before spending.” With this, their Facebook account details have been recorded; all while the user is unaware.
According to Zimperium, the mobile security company that discovered FlyTrap, it was effective by using high-quality designs that closely resembled an authentic service to fool the users into downloading it.
While the original apps carrying the Trojan were taken down by Google, the apps are still hosted on third-party app stores, and by sharing links to these through hacked Facebook accounts and social engineering, the malware continues to spread and be alive.
How to Protect Yourself From Malware
There is no long-term solution to dealing with malware. They will always pop up and come up with new methods to try to obtain your information. This is why it's important to know the tell-tale signs of something being a scam or a form of cyber attack.
The most important thing to look out for is unknown links. Even if they look authentic, whether they are sent to your email or messaged by a friend, take a second look and avoid entering your personal information. Never login to any of your accounts if requested by a third-party app, ad, or email. This is an immediate red flag you should watch out for.
Nowadays, lots of apps ask for a variety of permissions from your phone. It's a good idea to check what they want and if it's necessary. Use anti-malware and anti-virus apps to protect your device and scan apps you plan on installing for known threats before you proceed to download them.
If you don't know what's the right app for you, we have a guide on the best antivirus apps for Android.
Dealing With Malware
Malware is troublesome to deal with. Most people assume that an entity such as Google offers the best security on their platforms, but the reality is that there are always cracks through which things like FlyTrap slip through.
For those unaware, this can be serious and their private information can be compromised. It is important to practice safety on the internet and teach your close ones as well.