Team Clark is adamant that we will never write content influenced by or paid for by an advertiser. To support our work, we do make money from some links to companies and deals on our site. Learn more about our guarantee here.
A new variant of Android malware that threatens your mobile banking safety is evolving and posing a threat, according to Kaspersky Lab.
Named ‘Faketoken,’ this malware reportedly masquerades as Adobe Flash Player, among other programs and games, and once downloaded, it can communicate directly with the protections in your operating system and take them over.
Here’s what you need to know about Faketoken…
Read more: Why you can’t always bring your phone to a new carrier
Faketoken was originally discovered in 2014. When you’re doing online banking, Faketoken will send a request to your phone telling you that you need to download an app to complete your transaction.
But instead of routing you to a real app like Adobe Flash Player, Faketoken directs you to an infected download.
Once the bogus download is on your phone, Faketoken can use it to then request admin rights to your phone. From there, it requests permissions to access your text messages, files and contacts, to send text messages and to make calls.
That allows Faketoken to intercept texts that your bank would send as part of their two-factor authentication safeguards. And that’s how the criminals can gain access to your account and transfer money out of it!
The latest wrinkle in this case is that Kaspersky has determined Faketoken has now been modified to include a data encryption capability.
Some 16,000 users are believed to have been hit, according to Kaspersky. The malware has shown up in the United States, Germany, Russia, Thailand and elsewhere.
Since Faketoken aims to steal your text messages to get those special one-time codes from your bank, one of the best ways to deal with this is to opt for two-factor authentication with financial institutions that doesn’t involve SMS.
Some common alternatives include fingerprint or facial identification. Vanguard even uses voice recognition software as part of its two-factor authentication process.
Here are some other general guidelines about way you can protect yourself from malware apps in the online banking realm…
Always make sure you install the latest software updates from your operating system. These often include security and protection updates to help protect your device.
Resist the temptation to fool around with your operating system. People sometimes mess around with their OS in trying to download apps that aren’t sanctioned. Don’t do it!
Make sure you install malware protection and make sure that it is updated. Clark’s Virus, Spyware and Malware Protection Guide is a great way to find free and effective options.
You should never do any financial transactions on free public Wi-Fi. Period!
Android users got a real scare last year when a report emerged that they could be hacked by text message.
Maybe you’ve signed up for texts from your bank. But then a text comes through you weren’t expecting with a link for you to click to update your info. What do you do?
While it may be legit, your best bet is to play it safe. Get off your phone, get onto a secure network (preferably from a computer with good anti-virus software on it) and log into your bank’s official website.
If the text from your bank was a legit one, you should see the same request for your info at the bank’s official website. Then you can give them whatever info they’re asking for.
When it comes to downloading mobile banking apps, be sure you only install your bank, credit union or brokerage firm’s official apps that you find at their websites.
Disable auto-fetching of MMS for any messaging apps you use. Outlook.com has a step-by-step guide with screenshots for Hangouts and Messenger, among others.
Go through your bank statement line-by-line on a daily basis. Report any suspicious charges immediately.
You’re going to need a unique password for each financial account you have: Bank, credit union, brokerage account, etc. That way if one is compromised, the crooks won’t have automatic access to every financial account in your life. Here are seven ways to create safer passwords for all your accounts.
Read more: The #1 wireless network in America is…
Source: Protect yourself from malicious Android apps by Clark on Rumble
This post was last modified on March 22, 2017 4:40 pm
You walk into a Costco browsing for treasures and hoping to find some delicious free…
If you've been considering signing up for one of the Chase Sapphire credit cards, now…
The costs associated with owning a home go way beyond the amount on the mortgage. …
Inflation hits people on a fixed income the hardest. Say you're retired. You're living off…
Deciding to save and invest are great habits. But once you check that box, your…
If you're considering subscribing to Fubo, you need to be comfortable missing out on some…