Skip to main content

Cellphone towers to spread the Android Swearing Trojan


Chinese scammers are deploying rogue cellphone towers to spread the Android Swearing Trojan via malicious URL in SMS messages.


Chinese scammers are deploying fake mobile base stations to spread the Android Swearing Trojan in text messages.
The attackers have improved the well-known Smishing attack using rogue cell phone towers as the attack vector and distribute the Android banking malware via spoofed SMS messages.
The rogue Cellphone towers send SMS messages include a malicious URL purport to be from China Telecom or China Unicom. According to the experts from Check Point, China’s Tencent has also observed a more conventional malware dropper in infected applications.
With this technique, the scammers avoid being caught by the control implemented by carriers.
The Swearing Trojan is quite similar to other banking trojan, it is able to steal user data and it can bypass 2-factory authentication (2FA) security.
It is able to intercept the one-time code sent to the user via SMS during the authentication phase. By replacing the original Android SMS app with an altered version of its own, Swearing Trojan can intercept incoming SMS messages, rendering two-factor authentication useless.
“By replacing the original Android SMS app with an altered version of its own, Swearing Trojan can intercept incoming SMS messages, rendering two-factor authentication useless.” reads the analysis published by CheckPoint
Since Google Play Store is blocked in China, it is easy for scammers trick users into installing the APK from an untrusted source just by sending an SMS.

“Using a BTS to send fake messages is quite sophisticated, and the SMS content is very deceptive. The message tricks users into clicking a malicious URL which installs malware,” continues CheckPoint Security.
There are more phishing scams Swearing Trojan uses to spread:
  • Work related documents: A fake SMS message coming from a manager asks the user to download and open an important document right away, and to reply to comments inside.
  • Photos or videos: A fake SMS message claims to include a picture of a memorable event, or to be of a cheating spouse.
  • Trending events: A recent example posed as a MMS message including a video of a cheating celebrity wife caught in action.
  • App update notifications: An SMS message claims to be from a bank or telecom provider, and asks the user to install critical updates.
This version of the Swearing Trojan doesn’t use command and control servers, the malicious code sends information back to the crooks via SMS or email.
Tencent reported the arrest of the cyber criminal gang associated with the Swearing Trojan, the new wave of attacks leveraging on the malware demonstrates that another gang is using the code.

Popular posts from this blog

TAMILNADU UNIVERSITY LIST

State Government Universities Anna University Annamalai University Alagappa University Bharathidasan University Bharathiar University Madurai Kamaraj University Manonmaniam Sundaranar University Mother Teresa Women's University Periyar University Tamil Nadu Agricultural University Tamil Nadu Dr. Ambedkar Law University Tamil Nadu Dr. M.G.R. Medical University Tamil Nadu Open University Tamil Nadu Physical Education and Sports University Tamil Nadu Teachers Education University Tamil Nadu Veterinary and Animal Sciences University Tamilnadu Horticulture University Tamil University Tamil Virtual University Thiruvalluvar University University of Madras Central Government University Central University of Tamil Nadu Gandhigram Rural University Private Deemed Universities Avinashilingam University for Women B S Abdur Rahman University Bharath University Chettinad University Dr. MGR Research Institute University...
Read more

Top 5 Whatsapp Hacking Apps 2021

1. mSpy mSpy is the best application used to monitor text messages, calls, GPS map, device activity tracing and a number of other tracker activities on target phones. 2. Spyic Spyic is one of the most popular and most used web applications for tracking Android phones, iPhones, and tablets. 3. Clevguard Clevguard is an app that will help you track any compatible smartphone, tablet or computer you want. You can use it to stay on top of your child's online activity and, therefore, keep them safe. This app will work on both iOS and Android devices, and it is straightforward to install. 4. XNSPY XNSPY is the world's most trusted cell phone spy software to monitor any smartphone and tablet remotely. It works on a range of devices including Android. 5. NEXSPY NexSpy is a mobile spy app with a feature that lets you monitor a target user's SMS messages. It is a paid app and it c...
Read more

TAMILNADU DISTRICT LIST

Sr. No. District Population Growth Rate Sex Ratio Literacy Density 1 Chennai 4,646,732 6.98 % 989 90.18 % 26553 2 Kancheepuram 3,998,252 38.95 % 986 84.49 % 892 3 Vellore 3,936,331 13.20 % 1007 79.17 % 648 4 Thiruvallur 3,728,104 35.33 % 987 84.03 % 1098 5 Salem 3,482,056 15.44 % 954 72.86 % 665 6 Viluppuram 3,458,873 16.84 % 987 71.88 % 481 7 Coimbatore 3,458,045 18.56 % 1000 83.98 % 731 8 Tirunelveli 3,077,233 12.97 % 1023 82.50 % 460 9 Madurai 3,038,252 17.84 % 990 83.45 % 819 10 Tiruchirappalli 2,722,290 12.57 % 1013 83.23 % 604 11 Cuddalore 2,605,914 14.02 % 987 78.04 % 704 12 Tiruppur 2,479,052 29.11 % 989 78.68 % 478 13 Tiruvannamalai 2,464,875 12.75 % 994 74.21 % 398 14 Thanjavur 2,405,890 8.56 % 1035 82.64 % 705 15 Erode 2,251,744 11.66 % 993 72.58 % 391 16 Dindigul 2,159,775 12.31 % 998 76.26 % 358 17...
Read more