Great Moto G Stylus deal on Amazon!
Samsung offers enhanced trade-in for its Z Flip 5 - Save $500 now with an extra $50 worth of instant Samsung Credit!
Samsung offers enhanced trade-in for its Z Flip 5 - Save $500 now with an extra $50 worth of instant Samsung Credit!

Android users warned about new threat after one victim loses $280K

By
17comments
Researchers warn about Android malware that has stolen $280K from one victim alone
Cybercriminals are forever coming up with new ways to game the system. It makes you wonder if they are so smart, why didn't they do anything better with their lives? This post is not for gushing about the intelligence of online criminals of course. It's about a new Android malware called FjordPhantom.

Discovered by security company Promon, FjordPhantom is a malware using strategies never seen before. What makes it scary is that it's very good at avoiding detection.

The malware is believed to be wreaking havoc in Asian countries Indonesia, Thailand, Vietnam, Singapore, and Malaysia. One victim was swindled out of 10 million Thai Baht or around $280,000.


The attack is initiated by sending an email or message to a victim with a prompt to download a legitimate banking app. The catch is that once the app is downloaded, it's run in a virtual environment to give attackers control over what's happening. Virtualization provides a private execution environment for running code and helps you do things such as download the same app twice so it can be used by two users sharing the same device.

The malware also uses a hooking framework to intercept various actions. Hooking is a technique used to change how apps or operating systems behave.

There's also a social element to the attack: after an app is downloaded, the cybercriminals call the victim, posing as a customer service representative from the bank to help with running the app. This step can help the attacker trick the victim into performing a transaction or revealing credentials.

By downloading a legitimate app into a virtual filesystem and using hooking, FjordPhantom messes with how an app is normally handled by Android to flag any shady behavior. 

Since the app is installed in a virtual container, it breaks the Android sandbox, which is a security feature that isolates an app's code and data from other apps and the system. This way, if one app is malicious, it cannot manipulate other apps or the core system.

Without sandboxing, apps can access each other files and inject code into each other. It also eliminates the need for root access and prevents root detection.

In short, these tactics allow FjordPhantom to carry out attacks without being detected as a user would never know it's using a virtualization solution. Using the hooking framework, it prevents the system from things such as alerting users about use of screenreaders to steal sensitive information. 

Promon believes that FjordPhantom will continue to evolve. To protect yourself, make sure you only download apps from trusted sources and avoid giving out sensitive information over the phone, even if the person on the other end is claiming to be from your bank as banks typically never request its customers for such info on a phone call.

Google has reassured Android users that they don't need to panic.

Users are protected by Google Play Protect, which can warn users or block apps known to exhibit malicious behavior on Android devices with Google Play Services, even when those apps come from sources outside of Google Play." - Google Spokesperson
https://m-cdn.phonearena.com/images/users/270-200/Anam.jpg
Anam Hamid Mobile Tech News and Deals Journalist
Anam Hamid is a computer scientist turned tech journalist who has a keen interest in the tech world, with a particular focus on smartphones and tablets. She has previously written for Android Headlines and has also been a ghostwriter for several tech and car publications. Anam is not a tech hoarder and believes in using her gadgets for as long as possible. She is concerned about smartphone addiction and its impact on future generations, but she also appreciates the convenience that phones have brought into our lives. Anam is excited about technological advancements like folding screens and under-display sensors, and she often wonders about the future of technology. She values the overall experience of a device more than its individual specs and admires companies that deliver durable, high-quality products. In her free time, Anam enjoys reading, scrolling through Reddit and Instagram, and occasionally refreshing her programming skills through tutorials.

Featured Stories

Xiaomi 14 Ultra takes over PhoneArena Camera Score, beating Galaxy S24 Ultra and iPhone 15 Pro Max
Xiaomi 14 Ultra takes over PhoneArena Camera Score, beating Galaxy S24 Ultra and iPhone 15 Pro Max
Pixel 8a falls behind Pixel 8 and Galaxy S24 in PhoneArena Camera Score, but beats mid-range arch-rival
Pixel 8a falls behind Pixel 8 and Galaxy S24 in PhoneArena Camera Score, but beats mid-range arch-rival
Believe it or not, Circle to Search may be coming to iPhones
Believe it or not, Circle to Search may be coming to iPhones
Longer battery life strong possibility for iPhone 16 Pro Max
Longer battery life strong possibility for iPhone 16 Pro Max
Loading Comments...

Popular stories

T-Mobile removes old plans from website, stoking fears people will be moved to pricier ones
T-Mobile removes old plans from website, stoking fears people will be moved to pricier ones
Wall Street executive says Dish could file for bankruptcy in the next 4 to 6 months
Wall Street executive says Dish could file for bankruptcy in the next 4 to 6 months
Surprising photo reveals Samsung’s CEO doesn’t use a Galaxy S24 Ultra! I think I know exactly why...
Surprising photo reveals Samsung’s CEO doesn’t use a Galaxy S24 Ultra! I think I know exactly why...
If everything goes to plan, T-Mobile's 5G service will soon get another boost
If everything goes to plan, T-Mobile's 5G service will soon get another boost
T-Mobile blamed for sky-high prices for consumers in the US
T-Mobile blamed for sky-high prices for consumers in the US
T-Mobile can't stop Verizon and AT&T users from suing in search for billions in damages
T-Mobile can't stop Verizon and AT&T users from suing in search for billions in damages

Latest News

Sound, durability, and battery life: the Bang & Olufsen Beosound Explore offers it all for less on Amazon
Sound, durability, and battery life: the Bang & Olufsen Beosound Explore offers it all for less on Amazon
AT&T rep adds new lines to a customer's account and finances $2K in gear without permission
AT&T rep adds new lines to a customer's account and finances $2K in gear without permission
With support for the Camera Assistant app, the Galaxy S21 FE cameras can do much more
With support for the Camera Assistant app, the Galaxy S21 FE cameras can do much more
Google pulled free Pixel Tablet for iPad trade-in deal because it became too popular
Google pulled free Pixel Tablet for iPad trade-in deal because it became too popular
The capable JBL Flip 5 sells for less than $90 through this unmissable Amazon deal
The capable JBL Flip 5 sells for less than $90 through this unmissable Amazon deal
Apple saved App Store users from over $7 billion in fraudulent charges over the last three years
Apple saved App Store users from over $7 billion in fraudulent charges over the last three years
FCC OKs Cingular\'s purchase of AT&T Wireless