Great Motorola Edge deal on Amazon!

This Play Store app steals your banking app login information; delete it now!

By
Android Apps
This Play Store app steals your banking app login information; delete it now!
UPDATE:Google reached out to tell us that "the app was suspended and the developer banned on November 2, 2022."

A new report from GBHackers reveals that a simple "To Do" app (it's called Todo: Day manager) with over 1,000 installs is actually a malware-laden banking trojan known as Xenomorph. The trojan was discovered by the Zscaler ThreatLabz team. Similar to the mythical Trojan Horse, these apps have a surprise inside. Instead of soldiers though, these apps contain malware that can collect personal data and steal your hard-earned money.

Take the Xenomorph trojan. Once inside your phone, it can steal the login information you use for the banking apps you have installed on your handset. From there, it is probably a small hop, skip and jump to having your bank account wiped out. It can also intercept SMS messages and notifications allowing the attacker to access one-time passwords (OTP) and two-factor authorization requests which could result in some hanky-panky taking place with some of your accounts.

Don't let the login information for your banking app get stolen by attackers - This Play Store app steals your banking app login information; delete it now!
Don't let the login information for your banking app get stolen by attackers
If you have the Todo: Day manager app on your phone, make sure to delete it immediately. Even if it has been removed from the Play Store, once the app has been installed on your device, you need to uninstall it as soon as possible. With only 1,000 installs, the odds favor that you probably never installed this app. But there still are some lessons to be learned here.
A legitimate Play Store app will never ask you to download an app from a third-party app store (a process known as sideloading).

Recommended Stories
Some malware victims unwittingly put the ball in motion by responding to a phish. This is an email or another form of communication that looks like it is from a specific company right down to featuring the correct icons and graphics. But in reality, the email was sent by a bad actor looking to gather personal data and set off a malicious app that was previously installed on your device.

One thing that you can do to avoid future problems is to read the comments section of an app you plan to install from a developer you've never heard of before. Look for red flags that might provide you with a warning not to download this specific title. These warnings typically come from users who have been victimized by an app loaded with malware.
https://m-cdn.phonearena.com/images/users/39-200/Alan-F.jpg
Alan Friedman Mobile Tech News Journalist
Alan, an ardent smartphone enthusiast and a veteran writer at PhoneArena since 2009, has witnessed and chronicled the transformative years of mobile technology. Owning iconic phones from the original iPhone to the iPhone 15 Pro Max, he has seen smartphones evolve into a global phenomenon. Beyond smartphones, Alan has covered the emergence of tablets, smartwatches, and smart speakers.

Recommended Stories

Loading Comments...

Popular stories

Even longtime T-Mobile customers will have to put up with slow internet speed policy
Even longtime T-Mobile customers will have to put up with slow internet speed policy
Two more companies want FCC action against T-Mobile for interference from 5G
Two more companies want FCC action against T-Mobile for interference from 5G
iPhone users warned to disable iMessage temporarily to avoid getting hacked
iPhone users warned to disable iMessage temporarily to avoid getting hacked
T-Mobile will soon have another reason to gloat
T-Mobile will soon have another reason to gloat
Walmart's hot deal on the JBL Xtreme 3 gives you maximum sound at a bargain price
Walmart's hot deal on the JBL Xtreme 3 gives you maximum sound at a bargain price
T-Mobile issues unsatisfying statement about employees receiving SIM swap offers
T-Mobile issues unsatisfying statement about employees receiving SIM swap offers

Latest News

Verizon's Visible introduces annual plans with discounts up to 26%
Verizon's Visible introduces annual plans with discounts up to 26%
Comcast launches NOW, low-cost and prepaid brand for data, TV, and WiFi hotspots
Comcast launches NOW, low-cost and prepaid brand for data, TV, and WiFi hotspots
Apple tipped to reduce display size of iPhone 17 Plus
Apple tipped to reduce display size of iPhone 17 Plus
Google Photos working on an option to hide your downloaded memes and other UI tweaks
Google Photos working on an option to hide your downloaded memes and other UI tweaks
Hurry up and snatch Amazon's jumbo-sized Fire Max 11 tablet at its biggest discount yet
Hurry up and snatch Amazon's jumbo-sized Fire Max 11 tablet at its biggest discount yet
Memes of the week: Crazy Pixel leaks, OnePlus feels the heat in India, and more!
Memes of the week: Crazy Pixel leaks, OnePlus feels the heat in India, and more!
FCC OKs Cingular\'s purchase of AT&T Wireless