Escobar Malware Can Steal Money From Your Bank Account

Synopsis – As of now, reports suggest that over 190 institutions across 18 countries have been affected by the malware, whose details haven’t yet been specified. The malware enters devices hiding inside an app, usually impersonating the McAfee antivirus app that can be found on the Google Play Store.

This is a siren of danger as a new Android banking Trojan named ‘Escobar’ is reportedly stealing data from smartphones using Google Authenticator. The Escobar Malware is not new in the spectrum rather it has been there for a while and has now come with a new name and updated capabilities.

As of now, reports suggest that over 190 institutions across 18 countries have been affected by the malware, whose details haven’t yet been specified. The malware enters devices hiding inside an app, usually impersonating the McAfee antivirus app that can be found on the Google Play Store. However, Google has not acknowledged any such interference in its services.

Rather than primarily doing the job of stealing data such as SMS texts messages, media files, etc, the malware targets and controls call, track location, use phone camera, has control over uninstalling an app, injecting new URLs into web browsers and it can even use the VNC remote-desktop function that controls the device’s screen.

MalwareHunterTeam first spotted the suspicious MacAfee APK over two weeks ago and posted a tweet on Twitter warning against the possible threats of stealing data from Android phones. The team found that the Android package was named “com.escobar.pablo”. Pablo Escobar was an infamous Colombian drug lord who was killed in 1993.

Meanwhile, the malware is said to be having the potential to reach make transactions through the cyberattack victim’s online services including online bank accounts operate social media accounts, and email as well. So, in order to keep the device and money safe while online transactions, it is advised that you verify before downloading an app even on Google Play Store.

Ways To Protect Your Device From Escobar:

• To keep your device protected, always keep an Android antivirus app on your phone, take action if there are some notifications that indicate something suspicious.
• Try to avoid installing any app from outside sources as much as possible. Install them through Google Play Store and that too after verifying the app.
• Use strong passwords, especially try to use two-factor authentication (2FA), and using a USB security key is always the best option to secure your device.
• And now the part that everyone clicks without even reading the terms, always check on the permissions an app is asking while you download and try avoiding giving unnecessary access to apps.
• Last, but not least, ensure that ‘Google Play Protect’ is turned on.

What To Do After the Malware attack?

• Firstly, in order to identify whether your device is under threat or has caught up with Escobar Malware, you need to track the mobile data or Wi-Fi usage of apps you have installed.
• Take note of alert notifications provided by anti-virus and take action accordingly.
• If you find out that your device is under threat and notice unusual activity, disable Wi-Fi or mobile data right away and remove the SIM card. Removing the sim card is necessary as malware can restart the mobile data.
• Towards, the next step you should Factory reset your phone after taking important backups and personal data on your Google account.
• Now, the most important part, check your bank balance and if you notice any suspicious transaction, immediately contact your bank and report it.