A malware campaign is using fraudulent loan apps to trick unsuspecting users into giving out their private information. The apps have amassed over 100,000 downloads from unofficial app stores.
An Android malware campaign leveraging money-lending apps to steal personal information from victims and blackmail them has recently been discovered,
Named by cybersecurity firm Zimperium „MoneyMonger,“ the campaign uses malicious apps developed using the Flutter framework. MoneyMonger „takes advantage of Flutter’s framework to obfuscate malicious features and complicate the detection of malicious activity by static analysis,“ the firm’s blog stated. „Due to the nature of Flutter, the malicious code and activity now hide behind a framework outside the static analysis capabilities of legacy mobile security products.
