The hype surrounding the audio-based chat app Clubhouse, which is only available for iPhones and iPads, is immense. Criminals are currently trying to lure users into the malicious code trap with a supposed application for Android.
Clubhouse: Fake Android version contains Trojans
The “BlackRock” Trojan is hidden behind the counterfeit. If the malware gets onto the device, it looks for 458 online services and then tries to steal the login data.
The target list includes well-known finance and shopping apps, crypto exchanges, as well as social media and messaging platforms.
These include well-known names such as Twitter, WhatsApp, Facebook, Amazon, Netflix, Outlook, eBay, Coinbase, Plus500, Cash App and BBVA. In the current case, SMS-based two-factor authentication (2FA) does not help either, as the malware can intercept text messages. ESET Mobile Security already protects its users from BlackRock.
Beware of further fake apps
“The website that advertises the supposed Clubhouse App for Android looks deceptively real. As soon as the user clicks on the button that is supposed to take him to the Google Play Store, the app is automatically downloaded and installed.
Legitimate apps would always forward the user to Google Play first, ”explains Lukas Stefanko, malware researcher at ESET. “Even during installation, the alarm bells should ring with users. The app is not called ‘Clubhouse’, but ‘Install’.
The malware creator was apparently too lazy to properly camouflage the application. But it could also mean that we will see even more sophisticated copies in the future. “(AFP)