Skip to main content

New Android banking malware steals your data with the snap of a selfie

pornhub app malware android
Image used with permission by copyright holder
Next time you take a selfie, it could be moments before a new piece of malware takes over your banking apps. But it can’t just be any old selfie — the authors of the malware are hoping you’ll hold up a government-issued ID in the photo, too.

The discovery of the new malware comes from security researchers at McAfee, who say that the malware disguises itself as either a video codec, Flash plug-in, or an app for Porn Tube. As you might notice, none of those apps should need to verify your identity with a government-issued ID, so if you have your common sense about you, this isn’t something you should fall for.

Recommended Videos

If you do happen to go as far as handing over your information to hackers, you’ve given them everything they need to steal your identity and you should probably take the proper precautions to get your identity back.

Please enable Javascript to view this content

“In addition to requesting credit card information and second-factor authentication, the malicious application asks for a selfie with your identity document — very useful for a cybercriminal to confirm a victim’s identity and access not only banking accounts, but probably also even social networks,” said Carlos Castillo in a McAfee Labs blog post.

So how can you protect yourself against the threat? Well, first of all, you should avoid downloading shady third-party apps from any app store, and you should only be getting your apps from Google Play, as McAfee notes that the malware only seems to be appearing on apps downloaded from those third-party stores. If you do download an app that asks for personal information, make sure that personal information is something the app really needs to know — it’s very rare that you should need to hand over a photo of your ID.

Christian de Looper
Christian de Looper is a long-time freelance writer who has covered every facet of the consumer tech and electric vehicle…
Google just announced Android 16. Here’s everything new
The Android 16 logo on a smartphone, resting on a shelf.

No, that headline isn't a typo. A little over a month after Android 15 was released to the masses in October, Google has already announced Android 16 and begun rolling out its first developer beta of the newest Android version.

If this seems like a much earlier release than usual, that's because it is. We typically expect the first developer beta of the next Android update to arrive in February. For Android 16, however, Google has pushed the timeline up by a few months and launched Android 16 Developer Preview 1 in mid-November.
Why Android 16 is launching so much earlier

Read more
This new Android phone looks like a photographer’s dream
Sharp Aquos R9 Pro

Sharp has announced an intriguing new phone aimed at mobile photographers. It's called the Sharp Aquos R9 Pro, and while it may not have the best name, there's a lot to talk about here.

The Aquos R9 Pro has many interesting features, starting with its gigantic camera bump on the back, which houses three powerful cameras: a 50.3-megapixel primary camera, a 50.3MP telephoto camera, and a 50.3MP ultrawide camera. The cameras are surrounded by a vegan leather backplate.

Read more
It just got easier to protect your Android phone from thieves
Android 15 theft protection.

With the release of Android 15 on Pixel devices, Google has introduced several new privacy and security enhancements. Among the notable additions are the improved theft protection features that are designed to make it harder for thieves to access your data. Initially, it was a bit difficult to find these settings. However, as Android Authority first noted, that's about to change.

When Android 15 launched, to find the theft protection menu on devices running Android 15, you had to follow these steps:

Read more