The Anatsa Trojan disguises itself as an application on Google Play – Kommersant
[ad_1]
Google Play users may have been attacked by the Anatsa Trojan when downloading seemingly harmless applications. By data ThreatFabric experts, from November 2023, the number of infections could be at least 150 thousand.
The malware was mainly distributed and downloaded in Europe. The virus was disguised as fake PDF readers and memory cleaning applications. With the help of special mechanics, applications with a virus received the status of “best new free applications,” which gave them credibility and increased the flow of downloads.
The scammers used a multi-stage infection process using special Android capabilities, which allowed them to bypass security measures in OS versions prior to Android 13. Google Play has already removed most of the applications with viruses.
Read about how bank clients can be attacked using Trojan viruses in the Kommersant article. “Fraudsters are switching to Trojans”.
[ad_2]
Source link