Light Dark
February 4, 2020 By David Bisson 2 min read

Security researchers discovered a new form of Android malware that is attempting to steal money from diabetic patients.

In September 2019, FortiGuard Labs came across a sample of the Android malware, detected as Android/FakePlayer.X!tr, operating within a program called “Treatment for Diabetes.” The security firm’s researchers analyzed the app and found that it provides users with information pertaining to diabetes. For instance, they observed that the app contains facts and myths about diabetes as well as information regarding diagnosis methods, treatment options and insulin.

Upon closer examination, however, researchers noticed the app doing something unexpected. It was leveraging a successful installation to request permission to view and send SMS messages, an unusual request for a medical application. In the event that a user approved, the malware then used a Trojan dialer to send SMS messages to the phone number 5554, presumably in an attempt to steal money from its victims.

Stay Alert for Malicious Health-Related Apps

This isn’t the first time that FortiGuard Labs came across a health-related app containing Android malware. As reported by ZDNet, the research team presented on three other malicious programs at the Virus Bulletin 2019 conference in London. One of those apps claimed that it could tell users their life expectancy if they filled out a form, but the program behaved suspiciously, covertly sending the information entered by the user to a remote server. Another program claimed to help users manage their diabetes, but the app failed to work unless they installed other apps full of adware. The last app did provide advice on diabetes but also tracked a user’s GPS location, IP address and the other apps installed on their device.

Through these programs, attackers might have directly stolen money from their victims. They might have also compromised the privacy of their users by stealing their device information, as well as personal and even medical information. Attackers can monetize such details on the dark web, thereby opening the door for secondary attacks against victims.

How to Defend Against Android Malware

Consumers should always be wary of mobile apps that request strange permissions upon installation and ensure they are downloading apps from a legitimate marketplace. Attackers have shown they won’t hesitate to employ social engineering methods to deceive individuals, making security awareness crucial for mobile device users.

Security professionals can help defend their organizations against Android malware by investing in a mobile device management (MDM) platform that helps manage and secure mobile and internet of things (IoT) devices. Companies should also consider implementing a zero-trust model by tightly integrating their identity and access management (IAM), unified endpoint management (UEM) and mobile threat defense (MTD) capabilities.

 |  |  |  |  |  |  |  |  |  |  |  |  |  |  |  | 
David Bisson
Contributing Editor

More from

November 21, 2024

Airplane cybersecurity: Past, present, future

4 min read - With most aviation processes now digitized, airlines and the aviation industry as a whole must prioritize cybersecurity. If a cyber criminal launches an attack that affects a system involved in aviation — either an airline’s system or a third-party vendor — the entire process, from safety to passenger comfort, may be impacted.To improve security in the aviation industry, the FAA recently proposed new rules to tighten cybersecurity on airplanes. These rules would “protect the equipment, systems and networks of transport…

November 20, 2024

Protecting your digital assets from non-human identity attacks

4 min read - Untethered data accessibility and workflow automation are now foundational elements of most digital infrastructures. With the right applications and protocols in place, businesses no longer need to feel restricted by their lack of manpower or technical capabilities — machines are now filling those gaps.The use of non-human identities (NHIs) to power business-critical applications — especially those used in cloud computing environments or when facilitating service-to-service connections — has opened the doors for seamless operational efficiency. Unfortunately, these doors aren’t the…

November 19, 2024

Communication platforms play a major role in data breach risks

4 min read - Every online activity or task brings at least some level of cybersecurity risk, but some have more risk than others. Kiteworks Sensitive Content Communications Report found that this is especially true when it comes to using communication tools.When it comes to cybersecurity, communicating means more than just talking to another person; it includes any activity where you are transferring data from one point online to another. Companies use a wide range of different types of tools to communicate, including email,…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature