More than 50,000 Android users must delete this malicious new app immediately


Google’s Play Store is constantly under attack from increasingly resourceful villains, and despite the search giant’s efforts to protect Android users worldwide from all manner of threats to their most sensitive information, another malicious app has reportedly made it through lately, Chaos to prepare.

What is the app and how concerned should you be?

Posing as an innocent and helpful “battery saver and phone booster,” Fast Cleaner garnered over 50,000 installs before Google finally realized the app’s true intentions. Thanks to an age-old tactic that injected a brand new banking Trojan into the Android devices of unsuspecting users across the old continent to steal login credentials and intercept text messages and notifications, without anyone ever noticing anything fishy.

The good news is that Xenomorph was apparently uncovered in the “childhood” phase of its development, meaning some of its malevolent abilities weren’t really operational when ThreatFabric ran its analysis. In other words, this is probably a slightly less dangerous trojan than the previously mentioned “alien” or the widespread “joker” that has been been in circulation in various iterations for several years.
The bad news is that the features could be activated and expanded at any time, both on devices currently running the Fast Cleaner app and via other harmless looking apps that have either not yet been released or discovered.

What can you do to avoid danger?

Obviously, the first thing to do is to uninstall Fast Cleaner right away if you made the mistake of trusting its “battery saver” and performance boosting intentions from the start.

To be absolutely clear, the malicious app analyzed by ThreatFabric was allegedly created by “ilzeeva4”, which is probably not a real developer anyway, and you can no longer find it in the Play Store.

Unfortunately, simply deleting the app might not be enough to get rid of the threat as sneaky lines of code might be left behind to continue gathering financial data. A good extra security measure would be to contact your bank or simply check your bank statements for unauthorized transactions and, perhaps more importantly, change your passwords, PIN numbers, etc. frequently.

Two-factor authentication with a second device, like a spare phone or a computer, is a great way to protect your money in general, and as for malicious Android apps, remember to always check user reviews and little-known ones avoid titles and developers that promise you features and functionality that seem too good to be true.

This time, the specific targets for credential theft included a total of 56 different banks from Europe (and a number of additional cryptocurrency wallets and services), but the next threat could well be global, so sticking with it is important Be safe and follow our advice wherever you live and whatever Android device you use.

Comments are closed.