Uber app attacked by new Android malware to steal your login data. We all are aware with the presence of the Android Fake app Trojan as it has been around for years, however the most recent alternate is one of the most menacing we’ve ever seen.
In recent times, Symantec warned Android users in a blog post (On Wednesday) that one of the latest versions of the malware send-up the user interface of the Uber app and pops up in usual intervals on the user’s screen until they put or enter their login information. After getting the user ID and password, it sends the data to a remote server.
The situation become even worse when the malware then tries to cover up the interruption by showing a screen from the actual Uber app that display the current location of the user.
Being an Uber you must know that fact that the first thing you see when you open the app is your location on the map. So malware is using this trick in an order to make sure that nothing is wrong with users’ Uber app.
Must Read: Samsung Galaxy S8 and S8 + screens are waking up themselves, users report
Symantec give details that in order to show the user this screen, the malware has to take benefit of “the deep link URL of the legitimate app that starts the app’s Ride Request activity,” which then put on show the current position of the user as the pickup point.
To this point, the thieves would previously have your data and personal information, but by persuading you that you’re using the genuine app, you might not changed your password until it’s too late.
Regarding the threat of malware, Uber revealed the following statement to Engadget :
“Because this phishing technique requires consumers to first download a malicious app from outside the official Play store, we recommend only downloading apps from trusted sources.”
“However, we want to protect our users even if they make an honest mistake and that’s why we put a collection of security controls and systems in place to help detect and block unauthorized logins even if you accidentally give away your password.” Company said.
In nutshell, never download an app on your Android device from somewhere but the Google Play store.
If you will download an app except from Google Play store then it will put you at risk, and sooner than you know it, you could find your Uber account stolen and sold to the utmost bidder.
Furthermore, keep your software updated, pay close attention to authorization or permission requests and last but not least stay on the Play store.