FluHorse Malware: Fake Android Apps Targeting Personal Information of Over 1 Million Users

Attention all Android users! A new type of malware, named FluHorse, has recently been discovered by Check Point Research. This cluster of Android apps masquerades as genuine applications and has shockingly already been downloaded by more than one million users.

FluHorse is created to steal personal information such as usernames, passwords, and 2FA codes. It targets various sectors in the Eastern Asian market and is distributed through email. The attackers lay their bait through mimicked applications of well-established and trustworthy companies, as these apps are likely to draw financially capable customers.

Once the victim enters their login information, it is transmitted to the attackers' C2 server, and the malware begins to intercept all incoming text messages, including any authentication codes sent for 2FA. If the attackers have obtained the victim's login credentials or credit card details, they can utilize this information to bypass the 2FA and gain unauthorized access to the victim's accounts.

The FluHorse discovery underscores the importance of being vigilant when downloading apps, only using legitimate sources, keeping antivirus software updated, and exercising caution when opening emails from unknown sources. These measures can protect against the FluHorse malware and other similar threats.

Protect your personal information and take proactive measures to safeguard against these threats. Stay safe! #FluHorseMalware #AndroidSecurity #CyberSecurity #StaySafeOnline

learn more : https://cyware.com/news/fluhorse-new-android-threat-stealing-2fa-codes-and-passwords-22bf31a5