Malware News Powerful ‘Brokewell’ Android Trojan Allows Attackers to Takeover Devices

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,265
Content source
https://www.securityweek.com/powerful-brokewell-android-trojan-allows-attackers-to-takeover-devices/
A newly identified Android trojan can steal user information and provide attackers with the ability to take control of infected devices, threat detection company ThreatFabric reports.

Dubbed Brokewell, the trojan includes all the capabilities of mobile banking malware, while also providing attackers with remote access to devices.

Brokewell is being distributed via fake application updates, such as newer Chrome browser iterations and updates for an Austrian digital authentication application.

To harvest the victim’s credentials, the malware overlays fake windows over the targeted mobile applications. Furthermore, it can steal browser cookies by launching its own WebView, loading the legitimate site, and dumping session cookies after the user completes the login process.

Additionally, ThreatFabric discovered that Brokewell has an accessibility logging capability, which allows it to capture device events such as touches, swipes, text input, opened applications, and information being displayed on the screen.
Click to expand...
 
  • +Reputation
  • Like
Reactions: Gandalf_The_Grey, newspaper, Khushal and 4 others
Practical Response

Practical Response

Level 9
Mar 10, 2024
444
Tapjacking is serious and one of the worst exploits in android.

Screenshot_20240429-064137~2.png

One can either find security with tapjacking protection or, go into settings, tap apps, scroll down to special app access, click display over other apps, and disable any app from doing so.
 
  • Like
  • Hundred Points
Reactions: Gandalf_The_Grey, silversurfer, Khushal and 1 other person

Similar threads

silversurfer
    • Like
    • +Reputation
    • Thanks
Security News Critical Bluetooth Flaw Exposes Android, Apple & Linux Devices to Takeover
Replies
0
Views
1,205
Security News
silversurfer
silversurfer
silversurfer
    • Like
    • +Reputation
Zanubis Android Banking Trojan Poses as Peruvian Government App to Target Users
Replies
0
Views
1,203
News Archive
silversurfer
silversurfer
Ink
    • Like
    • Hundred Points
Serious Discussion How Android malware slips onto Google Play Store; a tactic called Versioning
Replies
0
Views
513
General Security Discussions
Ink
Ink

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top