When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Researchers at cybersecurity company Cleafy are warning people about newAndroidmalware that can steal money from their bank accounts.
Its called BingoMod and is a bang out of remote access trojan, or RAT for short.
Behöver du en VPN till din Android?
Cleafy discovered it back in May 2024 and recently published areport on itswebsiteexplaining how the malware operates.
As you read the post, youll quickly realize just how threatening it is.
In this instance, BingoMod takes the form of a legitimate antivirus app.
Its gone under several names: Chrome Update, InfoWeb, Sicurezza Web, WebInfo, and more.
Upon installation, BingoMod instructs users to activate Accessibility Services to unlock the security software.
However, in reality, it gives the malware permission to infect a gadget.
It is here where the malware begins to send fraudulent transactions from the infected gear to an outside location.
A phones security system cant stop this process because BingoMod not only impersonates users but also disables said system.
Cleafy states the malware is able to uninstall arbitrary applications, preventing security apps from detecting its presence.
Cleafy says the developers are looking for ways to lower its detection rate against AV solutions.
We only scratched the surface, so we highly recommend reading the report, which goes into deeper detail.
The writers included pictures of the softwares code and some of its commands.
For more robust protection, check out TechRadars list of thebest password managers for 2024.
