He pretended to be an update of Whatsapp but really it was a cyber attack that could steal information and spy on its victims without arousing suspicion, and has been downloaded more than 10 thousand times in the Google Play Store.
"Google Play didn't have the immediate ability to detect malware in this code"
They called Brata, A spy Trojan, that one can transmit in real time the activity of a mobile device to its attackers, the company Kaspersky revealedDuring the ninth summit on computer security in Latin America held in Iguazu, Argentina.
"Google Play did not have the immediate ability to detect malware in this code, so not only did it allow the application to be available in the store, but it remained active until it reached more than 10,000 downloads on Android mobile devices," he said. explained. Dmitry Bestuzhev, director of the Global Research and Analysis Team of Kaspersky Lab in Latin America.
According to Kaspersky's information, The number of attacks using malicious mobile software doubled in 2018, reaching 116.5 million, compared to 66.4 million in 2017.
During 2018, Kaspersky technology has detected over five million malicious installation packages; 150,000 new mobile banking Trojans; and over 60,000 new mobile Trojans for extortion.
BRata, according to the IT security company, was developed by Brazilian cyber criminals and its main goal was users of banking institutions in that country. "BRtata is a spy in your pocket. It can steal e-mails, messages, location, browsing history, clipboard contents, activate the camera and microphone, all to remotely control the mobile device and watch the victim in real time"Said Bestuzhev.
"In the mobile world, the biggest threat is adware: almost half of the top 10 mobile malware is of this type."
Kaspersky found that the Trojan had its first activities at the beginning of the year. And he warns that although it has already been reported and removed from Google Play, it can still expand to other regions and affect devices due to its mutations.
And, according to the company, found more than 20 variants of this malware on Google Play, in a period between January and June of this year.
They also point out that the risk will not decrease because cyber criminals, with only $ 700, can acquire a Trojan capable of taking remote control over a mobile device.
The Kaspersky report also points out that users in Latin America have received six attempts at mobile attacks per minute. Among the most attacked countries in the region are Brazil, ranked sixth in the world rankings, and Mexico in ninth place.
"In the mobile world, the biggest threat is adware: almost half of the top 10 mobile malware is of this type. They are applications that, when installed on the phone, show invasive advertising. This shows that there is no such thing. it's nothing free in the digital world, since these applications make money trying to sell something to the user, "said Fabio Assolini, senior security analyst.
He added that cyber criminals attack in various ways, including sending malicious messages via SMS, WhatsApp and e-mail where They promise an offer to users and ask them to access a link to complete some data or download a file. "However, the worst way is when the malicious application is found in the official download archive."
Social networks can also be a risk. Assolini said that Facebook is the platform most cyber criminals use to place their attacks. "Criminals exploit the ease with which it is possible to create an announcement on Facebook; also, in many cases, they use cloned cards to pay for advertising and thus spread, in advertisements, links that direct the user to a scam, to download a malicious application or a fake site where they end up stealing your data, "he warned.
All of the above is that Kaspersky specialists recommend users, to avoid being victims of any type of attack on their mobile device, to have installed security software and to be updated about information on attacks that occur.