Android malware tricks you into giving your password by mimicking Uber's UI

06 January, 2018, 02:55 | Author: Martin Tyler
  • Android Malware Steals Uber Credentials

What makes the malware particularly risky is that even if the user denies permission or administrative right or tries to kill the process on the device, "it keeps throwing continuous pop-ups until the user activates the admin privilege", said Mane. As the name implies, it pretends to be another app to steal data. When the user goes to login with the information, it is sent to a remote server controlled by the attackers.

"The Fakeapp variant we found had a spoofed Uber application user interface (UI) which pops up on the user's device screen in regular intervals until the user gets tricked into entering their Uber ID (typically the registered phone number) and password", Symantec explains. This activity is created using a deep linking technique which allows redirecting to the URL of the real app. Users should also refrain from downloading apps from unfamiliar third-party websites. It also has a global reach, as Uber operates in more than 80 countries around the world.

"To avoid alarming the user, the malware displays a screen of the legitimate app that shows the user's current location, which would not normally arouse suspicion because that's what's expected of the actual app", Symantec threat analysis engineer Dinesh Venkatesan wrote in a statement. If the customers try to open the fake notifications, they are asked to enter the login details. They see a current location and can start searching for Uber to drive to the needed place. Thus, Android malware attack might lead to money loss and other privacy-related issues.

Fake Uber app screen
Fake Uber app screens for users to enter their registered mobile number and

The gateway for the malware isn't believed to be the Google Play store itself, rather comes from downloading applications from third-party websites, and isn't thought to be widespread.

Still, it's a good reminder for users not to download apps from untrusted sources - sticking to the Google Play store is a good idea - and to expect sophistication from malicious apps.

In order to protect against falling victim to FakeApp, Uber recommends that users only download apps from the official Android marketplace.

23 hurt, including firefighter, in New York City blaze
Adults and children fled from the three stories of apartments above, including a man who ran outside with no shirt and no shoes. The 23 civilians - including nine children - and a firefighter were rushed to hospitals after the 7-alarm blaze, Nigro said.

Nevertheless, security experts say that mobile malware hasn't affected many Uber users; it is still advised to remain vigilant and pay more attention to cyber security.

Read user reviews and comments outside the app store. Thus, you should do your research.

As an extra precaution, go through the list of permissions every app requests from you during installation.

United Kingdom factory growth cools in December from four-year highs - PMI
The pickup in December's manufacturing PMI came on the back of strong demand both at home and overseas . Concerns over relatively subdued client demand and government policy changes dampened confidence.

Install reputable mobile antivirus.

Did you spot Katrina Kaif in Shah Rukh Khan's 'Zero' title announcement?
Here's the first poster of the film. " Zero ", as the film is titled, also stars Katrina Kaif and Anushka Sharma alongside SRK. The film also stars Jacqueline Fernandez, Anil Kapoor, Bobby Deol, Daisy Shah, Pooja Hegde and Saqib Saleem.


  • Failed missile test hits North Korean town

    Failed missile test hits North Korean town

    But more recent missile tests have been more successful and have travelled long distances, with some flying over parts of Japan. The Hwasong-15 intercontinental ballistic missile was launched eastward from Pyongsong in North Korea's South Pyongan Province.
    Spotify hit with $1.6 billion copyright lawsuit

    Spotify hit with $1.6 billion copyright lawsuit

    They're arguing that Wixen's contract with their songwriters won't let them take legal actions on the songwriters behalf. The suit seeks damages of $150,000 apiece for more than 10,000 songs represented by Wixen that it says are unlicensed.
    LG Showcases The World's Largest (88-inch) & Highest Resolution (8K) OLED Display

    LG Showcases The World's Largest (88-inch) & Highest Resolution (8K) OLED Display

    The highest resolution on commercial TVs so far is 4K or Ultra HD, which is what TV makers are pushing in their flagship models. Higher resolution is achieved by reducing the size of each pixel and in turn aperture ratio, unavoidably reducing brightness.
  • Mega Millions jackpot up to $450M as drawing nears

    Mega Millions jackpot up to $450M as drawing nears

    Americans spend more than $70 billion a year on lotteries. The odds of winning both are one in 75.6 quadrillion. Koppy said it varies how often the jackpot is hit.
    Justin Timberlake spent New Year's with James Taylor

    Justin Timberlake spent New Year's with James Taylor

    With everything being released before his Super Bowl performance, time can only tell if he will perform any music from the album. Man of the Woods makes it debut at the flawless time as Timberlake is set to perform at the 52 Super Bowl on February 4, 2018.
    Health warning shared as HSE confirm Aussie Flu related deaths

    Health warning shared as HSE confirm Aussie Flu related deaths

    You can infect others beginning one day before you get sick to about five to seven days after developing symptoms. Blum pointed out that many groups who may think they should avoid the shot are mistaken.
  • Maple Leafs defeat Sharks in six-round shootout

    Maple Leafs defeat Sharks in six-round shootout

    Frederik Andersen gave Chris Tierney a big gift but pulled the rug out from under him and the San Jose Sharks when it mattered. Patrick Marleu evened the score with his old friends, winning the rematch against his former-team on home ice in a shootout.

    Apple Aims To Make Developers' Jobs Easier With New Startup Acquisition

    The company advisor is Stewart Butterfield, and its most prominent client is Slack. To boost subscriber base, the company is now venturing into original programming.
    Look! Up in the sky! It's a Supermoon!

    Look! Up in the sky! It's a Supermoon!

    According to NASA , January's first full moon - nicknamed a wolf moon - will take place on January 1 and it will be a supermoon. This year on Halloween, for instance, the last-quarter moon will come within less than 4 hours of perigee.
  • LeBron James second behind Giannis in first All-Star returns

    LeBron James second behind Giannis in first All-Star returns

    Simmons is now sitting in the fourth spot behind Kyrie Irving , DeMar DeRozan , and Victor Oladipo in the East guards category. The captains will be the All-Star starters from each conference who receive the most fan votes in respective conferences.
    Pakistan condemns Kabul terror attack

    Pakistan condemns Kabul terror attack

    The Islamic State (IS) militant group claimed responsibility through its Amaq news agency, although it provided no evidence to back up the claim.
    Dangerous Cold To Start 2018

    Dangerous Cold To Start 2018

    Places such as Boston are on track to break the longest stretch of below-20-degrees days in its recorded history. Sub-freezing temperatures will return Wednesday night and persist through at least Friday afternoon.


Sears, Kmart to close 100 more stores, including 1 in NJ
Customers can use the store locator function on our web sites to find the location of their nearest Kmart and Sears stores. This is the latest in a round of closings of Sears and Kmart aimed at getting the company on solid financial footing.

Khloe Kardashian Talks Baby Names, Cravings And A Possible Marriage On 'Ellen'
But, Khloe wasn't buying what she was selling, as you can see by the way the rest of the conversation played out. She quipped: "They say that men take on sympathy cravings, or pregnancy or whatever".

Cancel This Year Game Of Thrones Officially Won't Be Back Til 2019
The new season is executive produced by Benioff and Weiss along with Bernadette Caulfield, Frank Doelger, and Carolyn Strauss. As the final season is expected to feature a lot of battle scenes, the show may require more special effects.

Warning to road users as Eleanor picks up pace
Exposed areas are set to suffer the worst conditions as Eleanor hits Northern Ireland before crossing to the western coast of northern England and Scotland.

Mega Millions jackpot climbs to $343M; Powerball reaches $440M
The Rolling Cash 5 jackpot for the next drawing is $130,000 for hitting all five numbers and the odds of winning are 1-in-575,757. According to the release, the ticket bought in the town of Colfax was one of three $1 million winners Saturday night.

Nike advertise Philippe Coutinho Barcelona shirts - and Liverpool fans are not happy
Nike's official website featured a strip down the middle, with the headline "Where the Magic Happens". Still, Liverpool fans were understandably incensed-and anxious .

Thick fog greets Delhi on New Year; flights, trains delayed
Save for a couple of global flights, all other flights that were heading North were delayed, they said. This is also an improvement, as RVR was in the range of 50-100 metres in the last two days.

Civil rights activist Erica Garner has passed away
A message posted on her Twitter account said she had brain damage "from lack of oxygen while in cardiac arrest". We send our heartfelt prayers and condolences to her friends and family during this time .

At least 12 die in plane crash in Costa Rica
Two Costa Rican crew members and 10 foreigners were on board, the ministry said. According to Costa Rican authorities, 10 of those passengers were USA citizens.

Kevin and Jesus blow to Man City
We know how strong physically it is England but teams miss big players, not just Manchester City. Manchester City striker Gabriel Jesus is facing up to two months out with a knee injury.