A major cyber threat has emerged for Android smartphone users. A new malware, named ToxicPanda, is rapidly spreading on Android devices and targeting users' bank accounts. This malware can enter users' phones through banking apps and Google Chrome and is capable of withdrawing money from bank accounts within minutes. Cyber ​​security firm Cleafy Threat Intelligence has discovered this dangerous malware and alerted people about its growing threat.
How does ToxicPanda malware work?
ToxicPanda malware can bypass the banking security of Android phones, allowing hackers to easily withdraw money from users' bank accounts. It can also give full control of the phone to remote hackers, making it even more dangerous. This malware is difficult to identify because it looks like popular apps, which makes users not even suspicious.
This malware is part of a malware family named TgToxic and its main purpose is to cause financial loss to users. It can also access One Time Password (OTP) by abusing the accessibility feature of Android phones, giving hackers complete control of transactions.
How does ToxicPanda attack?
Researchers say that the ToxicPanda malware enters your phone through apps downloaded from third party websites. This malware has been found mostly in those devices in which apps were downloaded from third party sites instead of the official Google Play Store or Galaxy Store. At present, it is not clear who developed this malware, but it is believed that its source may be in Hong Kong.
How to avoid ToxicPanda attack?
If you want to keep your phone and bank account safe, keep these things in mind:
Download apps only from official app stores: Only download apps on your phone from official app stores like Google Play Store or Galaxy Store. Avoid downloading apps from unknown third-party websites as this increases the risk of malware attacks.
Do not ignore software updates: Your phone receives software updates from the company from time to time. It is important to install these updates as they strengthen the security of the phone.
Do not click on unknown links: Do not click on any unknown links and stay away from suspicious websites.
Use security apps: Keep a reliable antivirus or security app installed on your phone, which can detect and block potential threats.
Password-protect financial apps: If you have banking apps on your phone, use strong passwords or two-factor authentication for them.