Home Malware Programs Malware Fakesky Malware

Fakesky Malware

Posted: July 7, 2020

The Fakesky Malware is a cyber threat that focuses on infecting Android devices, and it was initially used for money fraud in 2017. Back then, the malware's activity was concentrated in the Japan and South Korea regions. Still, it seems that a new Fakesky Malware campaign is on the rise – this time, its operators have expanded the malware's reach. They now go after Android devices in the United States, Taiwan, France, China, Germany, Switzerland and other regions. The threatening Android application package may be delivered via phishing text messages, or via fake copies of popular applications that are hosted on shady websites.

Once the Fakesky Malware is installed, it will hijack the user's contact list, and immediately send out a wave of spam messages that urge the victim's contacts to download an Android Package (APK) infected with the Fakesky Malware. This automatic propagation and spam mechanism may greatly enhance Fakesky Malware's reach, and drastically increase the revenue that its operators generate.

Once running, the Fakesky Malware can obtain all kinds of sensitive information from compromised devices – contacts, hardware/software data, mobile network information, and banking details. Of course, modern mobile banking applications use two-factor authentication (2FA) to prevent fraudulent transactions, but this might not be a problem for the Fakesky Malware – it can intercept incoming text messages before the user sees them. This allows attackers to complete the 2FA process without the user's knowledge, effectively enabling them to perform fraudulent financial transactions.

Cybersecurity experts suspect that the Fakesky Malware is a product of the same Chinese-speaking hackers responsible for the development of the FakeSpy Android Trojan. You can protect yourself from both of these threats by investing in an up-to-date Android anti-malware software suite.

Loading...