FluBot gets Meta with an untrue warning regarding FluBot infection. Today we will talk about Be wary of the false Android security update — it’s actually malware.
The well-known FluBot malware for Android has a brand new hilarious trick on its sleeves: It attempts to trick users into downloading a false “security update” by warning users regarding … FluBot itself.
“Your device is infected with the FluBot malware,” displays a red-hot screen you’ll see when you open a hyperlink within an SMS message. “Android has detected that your device has been infected.”
The Apple Pay money can be stolen from the air Here’s how to protect yourself
The top Android antivirus applications
Plus: Samsung Galaxy S22 vs. Phone 13: Can Samsung beat Apple?
In reality, your device hasn’t been affected as of yet. However, it is when you follow the message that says: “You must install an Android security update to remove FluBot.”
The actual alert about this false warning was issued this week from New Zealand’s Computer Emergency Response Team (CERT NZ) which is a government agency that warns businesses and citizens regarding cyber security risks. (Many nations have a CERT however, for instance, the U.S. somehow has two.)
The last time we were on FluBot and it enticed us into the app with the text message warning that there was a problem with the delivery of packages. The message also provided a link that took will take you to a fake page where you were required to download and complete a form in order to receive your package. It’s possible to contract FluBot in the event that you followed the steps.
You might still receive the notice of delivery to your package, according to CERT NZ, which led to a tweet about the new model and was followed by blog posts. You could also receive fake warnings that suggest that sexually explicit images of you were posted online.
Sometimes, you’ll see images of a welcoming young lady holding a bag with the typical “application form” to download and fill in. There are times when you’ll receive the frightening image below. (We like the idea of using an official trademark symbol beside the title of the virus.)
How to prevent being infected with FluBot
“The malicious app will only infect your phone if [you] click the link AND download the app,” the blog post on CERT New Zealand’s website stated. “Receiving the text does not mean you are infected. Apple phones can receive the message but cannot be infected.”
It’s accurate. Two statements are also in the fake FluBot warning screen.
“FluBot is an Android spyware that aims to steal financial login and password data from your device,” it declares. If you are having trouble getting “the fraudulent “Android security update,” then “select ‘Settings’ and enable the installation of unknown apps.”
It’s because by default the Google-provisioned Android phones will download apps through the Google Play Store unless the user chooses to override those settings. This is what the fake warning/real FluBot is asking for you to complete. Don’t do it.
In addition, ensure that the default settings for app loading are in place. For Android 8 and later, open Settings > apps > special Access > Install unknown apps and make sure “Not allowed” is next to the app’s name. If you see “Allowed”, tap on the app and turn on the toggle.
For Android 7 or earlier, go to Settings > Security (or Lock screen and Security) In the Security section, there’s an entry marked “Unknown sources.” Make sure it’s off.
It is also recommended that you are running the most reliable Android antivirus programs. FluBot has been available since the beginning of 2021 therefore, most antivirus applications can detect and block it instantly.
FluBot first surfaced in Spain in the early 2021s, it spread across different European states, and today has spread to other countries around the world.
If you receive an SMS message telling you that promises a package to you, or in particular when you receive a text that seems to refer to something expensive, such as the iPhone 13, that’s just waiting to be purchased be extremely be cautious. Do not download any random software from websites that are displayed in text messages. Also, do not allow unknown sources or apps.