Skip to main content

New Android banking malware steals your data with the snap of a selfie

Next time you take a selfie, it could be moments before a new piece of malware takes over your banking apps. But it can’t just be any old selfie — the authors of the malware are hoping you’ll hold up a government-issued ID in the photo, too.

The discovery of the new malware comes from security researchers at McAfee, who say that the malware disguises itself as either a video codec, Flash plug-in, or an app for Porn Tube. As you might notice, none of those apps should need to verify your identity with a government-issued ID, so if you have your common sense about you, this isn’t something you should fall for.

Recommended Videos

If you do happen to go as far as handing over your information to hackers, you’ve given them everything they need to steal your identity and you should probably take the proper precautions to get your identity back.

“In addition to requesting credit card information and second-factor authentication, the malicious application asks for a selfie with your identity document — very useful for a cybercriminal to confirm a victim’s identity and access not only banking accounts, but probably also even social networks,” said Carlos Castillo in a McAfee Labs blog post.

So how can you protect yourself against the threat? Well, first of all, you should avoid downloading shady third-party apps from any app store, and you should only be getting your apps from Google Play, as McAfee notes that the malware only seems to be appearing on apps downloaded from those third-party stores. If you do download an app that asks for personal information, make sure that personal information is something the app really needs to know — it’s very rare that you should need to hand over a photo of your ID.

Christian de Looper
Christian de Looper is a long-time freelance writer who has covered every facet of the consumer tech and electric vehicle…
Google Maps’ new feature sees Android play catchup to iOS
Samsung Galaxy S24 in Marble Gray showing Google Maps.

Android users are getting their first glimpse of a new operating system feature while using Google Maps, as the app is the first to make use of the Live Updates ability that was added for Android 16. The feature will give users updated information in their status bar so they can keep track of ongoing activity such as following directions using maps.

Similar to Apple's Live Activities system, the Android function can potentially be used by a range of apps but has first been seen in Google Maps. "Live Updates are a new class of notifications that help users monitor and quickly access important ongoing activities," Android developers explained in a post highlighting the feature when it was first announced.

Read more
With this new Android 16 feature, you’re one click away from enhanced protection
Someone holding a phone showing the Android 16 logo on its screen.

Android 16 is set to offer improved security for apps and services. Android Authority says this feature allows users to enhance their device’s security with a single click, surpassing Google’s Advanced Protection Program introduced in 2017.

The current feature is available to anyone with a Google account. It is recommended for individuals at higher risk of attacks, such as political campaign staff, journalists, activists, and business leaders. The program implements security keys or passkeys for signing in, provides additional protection against harmful downloads, and safeguards personal information by restricting access to Google Account data. Additionally, it offers enhanced protection against phishing and unauthorized access.

Read more
Perplexity’s new AI agent can perform multi-step tasks on your Android device
Running Perplexity on OnePlus Pad 2.

Perplexity announced Thursday that it is beginning to roll out an agentic AI for Android devices, called Perplexity Assistant, which will be able to independently take multi-step actions on behalf of its user.

"We are excited to launch the Perplexity Assistant to all Android users," Perplexity CEO Aravind Srinivas wrote in a post to X on Thursday. "This marks the transition for Perplexity from an answer engine to a natively integrated assistant that can call other apps and perform basic tasks for you."

Read more