FluBot Android Malware Spreads Rapidly and Steals Passwords

A new malware campaign has targeted users of the Android mobile operating system. The malicious software involved in these attacks steals passwords, banking app data, and other sensitive information. Experts warn that the malware is spreading quickly across victims’ devices.

The malware, named FluBot, is installed on users’ devices through text messages. These messages appear to come from delivery couriers, asking recipients to click a link to track the status of a package.

When users follow the URL, they are prompted to install a special app supposedly needed to track their delivery. In reality, this app is the malware itself.

Once installed, FluBot immediately accesses the victim’s contact list. The malware then tries to spread further by sending itself to the victim’s contacts via text messages. The threat has attracted the attention of the UK’s National Cyber Security Centre, which has issued guidelines for detecting and removing FluBot from devices.

It’s important to note that for FluBot to be installed, the user must have enabled the option to install apps from unknown sources. However, attackers have anticipated this and provide victims with instructions to disable this security feature and install the malware.

Users are advised to be suspicious of unusual text messages and never click on suspicious links.