A dangerous new Android malware, Albiriox, has been discovered, and cybersecurity experts warn that it allows hackers to access users’ banking apps and authorise transactions without needing an OTP (One-Time Password). This emerging threat is concerning as it bypasses typical security measures used in banking apps, such as login credentials and OTPs, which are normally required for transactions.
How The New Android Malware Albiriox Works and Its Spread
Albiriox is being distributed through fake apps and cloned listings on the Play Store. Researchers from the fraud prevention firm Cleafy discovered the malware, tracking its spread through malicious APKs. These APK files are disguised as legitimate apps, often delivered through fake app pages or messages via WhatsApp and Telegram, promising users exclusive offers or free downloads.
Once Albiriox is installed on a device, it takes advantage of Android’s accessibility tools to silently bypass security measures. Here’s how it works:
- Hackers first trick users into enabling “install unknown apps” permission.
- The trojan is installed quietly in the background, pretending to be a legitimate app.
- Instead of stealing passwords, Albiriox interacts directly with banking, digital payment, fintech, and even crypto apps, authorizing transactions as though the hacker were the legitimate user.
- Since the malware operates in the background, users often don’t realize anything is wrong until money is moved from their accounts.
More than 400 fake apps have been flagged by researchers as potential threats, all targeting individuals using financial services.
Rising Threat of Malware-as-a-Service
One of the most concerning aspects of Albiriox is that it’s being sold as Malware-as-a-Service on dark web forums. This model allows hackers to subscribe, download, and deploy the malware easily, making it more accessible for cybercriminals. This trend has reportedly gained momentum in Russia and nearby regions, where malicious APKs are being shared aggressively.
How to Protect Yourself from Android Malware
To stay safe from threats like Albiriox, Android users should follow these precautions:
Also Read: Character AI Statistics: Your Guide to Virtual Personalities
- Install apps only from the official Google Play Store and avoid downloading APK files from untrusted sources.
- Keep “install unknown apps” disabled unless necessary.
- Regularly check for unfamiliar apps, especially those related to finance or banking.
- Enable Google Play Protect and keep it updated.
- Always update your phone to the latest software to protect against known vulnerabilities.
Being cautious about the apps you install can significantly reduce your risk of falling victim to this type of Android malware.
More News To Read: Worried Your Gmail Was Hacked? Check Gmail Recent Logins