Tech News

Phone owners MUST check for ‘legit-looking’ apps that ‘quietly steal’ from your bank as sinister warning sign revealed

PHONE owners have been issued a stark warning over dangerous apps disguised as “legit” downloads.

They work as bank-emptying tools for hackers, silently pilfering your money and private info.

3

The attack targets Android phone owners, tricking them into installing dodgy downloadsCredit: Google

Worryingly, this type of attack is aimed at people using Android smartphones.

Related Articles

There are billions of phones running on Google’s Android software out in the world, so the warning shouldn’t be ignored.

The attack works by tricking you into downloading seemingly safe apps that are actually designed to raid your phone for money and info, according to security giant McAfee.

“Instead of helping you, these apps secretly steal your private info,” explained McAfee’s Brooke Seipel.

DODGY DOWNLOADS

The crooks are using a development tool called .NET MAUI to create “fake apps that look and feel like the real thing”, Brooke explains.

These apps might claim to be for banking, dating, or access to social media.

The tool itself is meant to be used to create legitimate apps, but McAfee says hackers are exploiting it to trick innocent Android phone owners.

“The decision to build with .NET MAUI helps hide their dangerous code from most antivirus software,” Brooke warned.

“Think of it like a thief wearing an invisibility cloak—unless you’re really looking, you won’t see them.”

McAfee revealed how one fake download was posing as a real banking app called IndusInd Bank.

Google reveals surprise Android upgrade including AI that answers phone for you

And it would appear to be a legitimate money-handling app, but would request very sensitive info.

That would include user names, phone numbers, email addresses, birthdays, tax identifiers, and even credit card info.

This data would then be shipped off to a server belonging to hackers who could use it to raid your finances.

To stay hidden, the apps play a clever trick to stay hidden, according to McAfee.

A hooded figure using a tablet to unlock a digital lock.

3

Criminals are tricking users into installing fake apps that silently steal your info – and even raid your bankCredit: Getty

“Normal Android apps have code in a format security tools can scan,” Brooke explained.

“These fake apps hide their code in binary files so it can’t be easily detected.

“That lets them stay on your phone longer—stealing quietly in the background.”

Another scam app was a fake social media server that was aimed at Chinese-speaking Android phone owners.

This terrifyingly effective app would steal contacts, texts, and even photos from the phone.

And the data it was pilfering was encrypted so that the theft was harder to detect.

STAYING SAFE

The good news is that these apps aren’t available on the regular Google Play Store.

That’s where most Android phone owners would normally get their downloads from.

HOW TO CHECK YOUR APPS ARE SAFE

google play insert

If you are worried about the apps you’re downloading, there’s a handy feature you need to try…

First, make sure that Google Play Protect is on.

Just go to the Google Play Store on your Android phone and tap on your profile icon.

Then go to Play Protect > Settings > Scan Apps With Play Protect and toggle the feature on.

This will scan apps that you’re downloading to make sure they’re not dodgy.

But you can also get a safety check on apps that you’re downloading from outside of the Google Play Store too.

“If you install apps from unknown sources outside of the Google Play Store, Google Play Protect may ask you to send unknown apps to Google,” Google explained.

“When you turn on the “Improve harmful app detection” setting, you allow Google Play Protect to automatically send unknown apps to Google.”

Just go to the Google Play Store, then Profile > Play Protect > Settings.

Then simply turn Improve Harmful App Detection on and you’ll be sorted.

Picture Credit: Google

Instead, these apps are offered via download links shared by hackers. They could also be spread through genuine accounts that have been stolen by crooks. This is the major warning sign you need to watch out for: suspicious apps being offered outside of the Google Play Store.

Brooke said that hackers are using “fake websites, messaging apps, and sketchy links in texts or chat groups”.

“So if someone sends you a link to a cool new app that’s not from the Play Store – be extra careful,” Brooke urged Android phone owners.

Google has vetting systems – as well as the Play Protect scanner – to help weed out dodgy apps from the Play Store.

Read more on the Scottish Sun

Illustration of a person using Google Play to watch videos and shop.

3

McAfee recommends being extra careful if you’re ever downloading any Android app from outside of the Google Play Store

But if you’re downloading apps that are being shared over the internet directly, you’re at much greater risk of downloading something dangerous.

McAfee said that red flags include links coming from strangers, or downloads that have strange app permissions (like wanting to read your texts).


Click Here For More Tech News

Photo of KSR

KSR

Hi there! I am the Founder of Cyber World Technologies. My skills include Android, Firebase, Python, PHP, and a lot more. If you have a project that you'd like me to work on, please let me know: contact@cyberworldtechnologies.co.in

Related Articles

PC insiders weigh in on tariffs: ‘Expect pain at the cash register.’

PC insiders weigh in on tariffs: ‘Expect pain at the cash register.’

April 7, 2025
Ring Outdoor Cam Plus review: Plus what?

Ring Outdoor Cam Plus review: Plus what?

April 7, 2025
Russian Kosmos Satellites Release Mysterious Object in Orbit

Russian Kosmos Satellites Release Mysterious Object in Orbit

April 7, 2025
NASA’s Parker Solar Probe Completes Second Close Flyby of the Sun at Record Speed

NASA’s Parker Solar Probe Completes Second Close Flyby of the Sun at Record Speed

April 7, 2025
Back to top button