Skip to main content
  1. Home
  2. Mobile
  3. News

This nefarious Trojan may impersonate your favorite ridesharing app

By

Be careful the next time you hail a ride from your favorite transportation app. You could be inadvertently hailing much more than you bargained for. As per a recent report from Kaspersky Lab, a mobile Trojan “has been caught recently stealing bank data by impersonating the interfaces of taxi-booking apps.” How might you know if your smartphone has been infected? One telltale sign, the research firm notes, is if your ridesharing app prompts you to enter your credit card number. Seeing as your favorite apps should already have this information on hand, if it asks you to re-enter the data, you may want to proceed with caution.

While the Faketoken Trojan, the malware in question, has been around for quite some time, it has gotten more sophisticated as time has passed. Kaspersky calls the latest iteration of the malware “Faketoken.q,” and notes that the Trojan generally infects smartphones through bulk SMS messages with a prompt to download images. Once its necessary modules have been installed, the Trojan begins monitoring everything that happens on your phone.

Recommended Videos

“When Faketoken detects the launch of an app whose interface it can simulate, the Trojan immediately overlays the app with its own screen,” Kaspersky writes. “To achieve that, it uses a standard Android feature that supports showing screen overlays on top of all other apps. A whole bunch of legitimate apps, such as messengers, window managers, and so on, use this feature.”

Related: 
Best new movies to stream on Netflix, Hulu, Prime Video, HBO Max, and more

The fallacious window looks just like your original app’s interface, but instead of proceeding as normal, the Trojan asks you to enter credit card information. And from there, well … we know how the rest goes.

Apparently, a number of apps have been attacked in this way, including mobile banking apps, Android Pay, the Google Play store, flight and hotel booking apps, and of course, ridesharing apps.

As it stands, it appears that the Trojan is largely relegated to users in Russia, but it may not be long before the malware comes our way, too. To protect yourself from any nefarious activity, Kaspersky recommends that you go into Android settings and prevent the installation of apps from unknown sources. Go to Settings, then Security, and then uncheck Unknown sources.

You should also pay close mind to the permissions an app requests prior to installation, even if you download the app from an ostensibly safe source (like Google Play). Finally, you might consider installing antivirus on your phone.

Lulu Chang
Lulu Chang
Former Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Topics

Editors’ Recommendations

This MacOS Trojan stealthily lifts your data, says Microsoft
The screen of the 2021 MacBook Pro.

You might think that your Mac is invulnerable to viruses and other security threats, but you might want to think again. As part of its commitment to intelligence sharing and collaboration, Microsoft recently exposed the evolution of a MacOS Trojan that can stealthily lift your personal data.

First spotted in September 2020, Microsoft says this piece of malware, known as UpdateAgent,  has increasingly progressed to "sophisticated capabilities." Though it also indicated that the latest two versions are still more "refined," Microsoft does warn that the malware is again being developed, and more updates could come soon.

Read more
Samsung Gaming Hub brings your favorite gaming services to one app
Samsung Gaming Hub appears on a TV screen.

Samsung is launching a new video game platform called Samsung Gaming Hub, which will be available on some of the manufacturer's 2022 smart TVs, including sets just announced at CES. The platform acts as a central hub for services like GeForce Now and Google Stadia, allowing players to access multiple cloud services in one place.

The service will launch in 2022, though no official date is set. Samsung smart TV owners will be able to access the gaming hub by pressing a "gaming" button in a TV's main navigation. Once in the app, players will be able to browse their recently played games, browse popular titles, and directly access services like Google Stadia in one place.

Read more
Hurry if you want the latest Apple iPad Air at lowest-ever price for Prime Day
13-inch iPad Air (2025) purple rear.

The Apple iPad Air M3 was just released a few months ago, but it's already part of Amazon's tablet deals for Prime Day. The 11-inch model with Wi-Fi and 128GB of storage is on sale for its lowest price so far of $479, following a 20% discount on the device's original price of $599. Once the shopping event is over, we're not sure how long you'll have to wait until we find a similar offer for this iPad, so push forward with your purchase now while the savings of $120 are still online.

$479 at Amazon

Read more