Pradeo research firm has a warning for Android smartphone users.
Recent security research companies detected malicious applications called 2fa Authenticator on the Google Play Store.
Application with 10,000 plus users apparently Trojan-Dropper.
This means that the cyber hackers and criminals use it to secretly install malware on the mobile device.
The 2FA Authenticator application is said to inject another malware called vultures on mobile users and steal their financial information, including banking and other details.
“Our analysis reveals that pipettes automatically install malware called vultures that target financial services to steal user banking information,” said research report.
The company told Google about the application and the latter has deleted it from the Google Play Store.
However, while Google deleting the application means that there are no more victims of the application, existing users need to delete them from their devices, and they need to do it manually.
How 2FA Authenticator App Workth 2FA Authenticator requested an important permission that was not disclosed on the Google Play profile.
This hidden permit and malicious code executed application allows it to automatically: Collect and send a list of applications and localization to its hackers so that they can use information for attacks on keylock and password security related to third-party applications under the software / system update Free to do activities even when the application turns off other cellular application interface using an important permission called System_Alert_Window which determines “very few applications that must use this permit; these windows are intended for system level interactions with the user.”
Android users, this password security application is banking trojans
