silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,143
Security researchers have discovered the Cerberus banking Trojan disguised as a legitimate currency app on Google Play.
On Tuesday, the cybersecurity team at Avast said the malicious app in question posed as a legitimate currency converter app designed for Spanish users.
In total, the software, "Calculadora de Moneda," -- translated as Currency Calculator -- has been downloaded over 10,000 times. [...]
The malicious app bypassed Google's security barriers by posing and acting as a legitimate app for the first few weeks after being accepted into Google Play. It appears that as users began to download the app in March, the software, at first, did not cause any harm and actually acted as a legitimate -- and useful -- utility.
However, after instilling trust in the growing user base, the app then triggered dormant code that became a dropper for the Cerberus Trojan.