Cyber security experts have recently introduced a new version of Android XLoader malware.
This malware runs automatically and steals sensitive information from the user's Android device.
How does malware work?
The new version of Android Xloader malware has been developed by a threat actor named Roaming Mantis. SMS text becomes a medium to spread malware.
A short URL is sent in such an SMS. As soon as this link is clicked, the user is prompted to download an Android installation file for the mobile app.
Malware looks like Chrome
According to a recent report by BleepingComputer, McAfee researchers have reported a new variant of the XLoader malware. As soon as it is installed on the user's device, it automatically launches and becomes active.
This malware deceives the user with the name Chrome. However, it actually styles the R in Chrome in italics. With the name Chrome, it easily asks the user for permission to run in the background.
XLoader also requests the user to make the default SMS app with different languages like English, French, Japanese, Hindi, and German.
What information is the malware stealing from the user?
Let us tell you, that McAfee has reported to Google about the new XLoader malware. When activated in the user's phone, this malware steals information like passwords, texts, photos, contacts, and hardware information like IMEI, SIM, and device serial number.
Android users should do this immediately
Android users are advised to enable the Google Play Protect feature on their phones to avoid this malware. With the Google Play Protect feature, any kind of malware app does not get entry into the user's phone.
Let us tell you, that this feature is auto-enabled by Google to the users. However, some users disable this feature from the Play Store.
How to enable Google Play Protect
1. First of all you have to open the Google Play Store.
2. Now you have to click on the profile picture on the top right corner of the screen.
3. Now you have to turn on the feature by clicking on Play Protect.
PC Social media