Warning: Major ‘package delivery’ scam over Android

 

 

 

Experts have warned about a text-message message scam that is affecting android users and spreading over the UK like bush fire.

The message is pretending like package delivery text from a delivery firm which provokes the users to install a tracking app. It is a malicious piece of software that is used for spying.

The spyware is called Flubot, which can take over the device and takes control over sensitive data, whether user’s personal pictures or banking details.

Network operator Vodafone said that there are already several text messages sent across all networks to millions of people.

A spokesman from the agency said, “We believe this current wave of Flubot malware SMS attacks will gain serious traction very quickly, and it’s something that needs awareness to stop the spread.”

He further added, “Customers should be especially vigilant with this particular piece of malware.” He asked everyone to be very careful about clicking on the link even if it is by mistake.

Other networks such as EE and Three are also following the warning their own and spreading the message.

Guidance about the threat is already issued by the National Cyber Security Centre (NCSC). The guidance also explained what to do and what not if the user has downloaded or clicked on the link by mistake.

The NCSC statement said, “If users have clicked a malicious link it’s important not to panic – there are actionable steps they can take to protect their devices and their accounts.”

The malware is capable of sending more text messages through affected user’s contacts and helping it spread more. Such advanced malware is quite challenging to rake down.

Ben Wood, The chief analyst at CCS Insight, said, “The seriousness of these malicious text messages is underlined by Vodafone making the decision to alert its customers.”

He further added, “This has the potential to become a denial-of-service attack on mobile networks, given the clear risk that a rogue application can be installed on users’ smartphones and start spewing out endless text messages.”

Mr. Wood showed his concern and said, “The broader risk for users is a loss of highly sensitive personal data from their phones.”

While the malware is claiming to provide a delivery package, it is actually tricking the users to fill up a form with their personal data including the bank details and other information. However, it was a previous attempt.

The new wave differs from that as it making the users install a malicious application to spread it more and make potential damage.

Android users who clicked on the link, showed a page where it was explained how to download and install the APK file. Usually, APK files are downloaded from other sources than the Google play store which otherwise gets blocked for security reasons.

Apple iPhone users are less affected than Android users.

The Flubot malware is gradually becoming a global concern as it spread over Spain, Poland, and Germany in recent months.