New Android malware threat can wipe your bank account

Android users, be careful about where your apps come from.

That’s because there’s a new and very sinister-sounding kind of malware going around on Google’s mobile OS, according to the fraud prevention experts at Cleafy (per Android Authority). Called Albiriox, the malware has been known to infect users’ devices, giving bad-faith actors full remote control over the device, at which point they drain the device owner’s bank accounts without even needing a password.

Cleafy goes into the nitty-gritty technical details on how this all works, but a basic summary is that the malware is being hidden in fake (but real-looking) Google Play Store download pages for financial apps on external sites. If you hit the download button on one of these pages, which, again, are not actually in the Play Store proper, you may be letting the malware onto your device. From there, it covertly enables the “install unknown apps” permission in the device settings, at which point the really bad stuff gets installed on your device.

From there, the bad actors can fully, remotely control your device without you noticing, performing actions like swipes and clicks from wherever they are. At that point, the hard part is over, and they can get to draining your bank account. It sounds like the best way to avoid this is to simply not download any weird financial apps from places that aren’t the Play Store. If you stick to downloading apps straight from the Play Store app, you should be fine.

That said, even apps on the official Apple App Store and Google Play Store can contain malware, as we’ve reported previously. Last month, we reported on six malicious Android apps that were recording user data, including WhatsApp messages, phone calls, and even background audio.