Security researchers have uncovered a surge in deceptive Android loan apps since the beginning of 2023.
These applications, posing as legitimate personal loan services, attract users with promises of quick and easy access to funds.
Their true intent is to defraud users by offering high-interest-rate loans and collecting personal and financial information for potential blackmail.
In an advisory published today, ESET malware researcher Lukas Stefanko, said these malicious loan apps request sensitive user information, exfiltrating it to attackers' servers.
Subsequently, this data is used for harassment and blackmail, even if a loan was not granted.
The firm's telemetry data shows a significant spike in SpyLoan app instances on unofficial app stores, Google Play and various websites since the beginning of the year, with detections soaring by nearly 90% from H2 2022 to H1 2023.
ESET, a member of the App Defense Alliance and active participant in a malware mitigation program with Google, said it has identified and reported 18 SpyLoan apps to Google, resulting in the removal of 17 apps from Google Play.
The research emphasized that despite the source, each instance of a SpyLoan app behaves identically due to the same underlying code.
The findings underscore the exploitation of users seeking financial assistance online and emphasize the importance of caution and validation when using financial apps.
The research further recommends that users stick to official sources, use security apps, scrutinize user reviews, examine privacy policies and take preventive actions in case of victimization.
This Cyber News was published on www.infosecurity-magazine.com. Publication date: Tue, 05 Dec 2023 16:45:25 +0000