a malware (computer virus) is remotely controlled They were found on mobile phones normally by users who use the Android operating system Official PayPal payment service application, according to a specialized company specializing in computer security.
This virus has the power to carry out transfers of local currency equivalent in five seconds in excess of $ 1,000, It has been camouflaged as a battery optimization tool and Google Play is distributed externally, ESET said in a statement.
Additionally, harmful software is remotely controlled It takes advantage of Android's accessibility service It will affect the official PayPal users.
The latter, activates an accessibility service Evil: This condition is presented to the victim as an application for the "enable" statistical service.
When the owner of the phone opens and registers the application, service (if pre-enabled) It imitates clicking to send money Address of the attacker PayPal.
"During the ESET study, the application has made a transfer of € 1,000, although the currency used depends on the location of the user, the whole process will be about five seconds and an unbelievable user may not intervene in time." Camilo Gutiérrez Amaya, ESET Latin American Research Laboratory.
"Because malware is based on theft of credentials, but rather Wait for the user to register through the official PayPal application on their own, the attack prevents the double authentication factor, "he added in a statement.
Trojan has another functionality to steal money uses phishing techniques: Fake screens to hide hidden screen in legal apps, Google Play, WhatsApp, Skype, Viber and Gmail.
du fake on screens You can steal your credit card information and access your credentials to your official Gmail account.
The cybersecurity firm, the creator of the same name, Suggested Android phone users to check their bank accounts "to detect suspicious transactions and change the password of the online banking system / PIN code, as well as your Gmail password."
In the end, experts suggested it Use Android's safe mode and uninstall an application called "Android Optimization". In the Application Administration menu, under "Configuration".