MasterFred Android Malware Found on the Google Play Store
Mobile devices are continuing to be one of the top targets of malware developers. The latest news informs users about a new piece of Android malware, which goes by the name MasterFred. The primary focus on this implant is stealing credit card details from users of Twitter, Instagram, and Netflix. It also has the ability to target a wide range of payment processors and banking institutions via fake phishing overlays. So far, copies of the MasterFred Malware have been found on devices from Poland and Turkey, but there is not yet enough information to determine the scope of the attack.
The malware uses a well-known trick to obtain the necessary permissions to execute its attack. Once the fake app is installed, it will prompt users to grant it the ability to use the Android Accessibility service. Unfortunately, malware with these permissions can obtain pretty much full control over the infected device, and launch all kinds of attacks.
The MasterFred Malware, in particular, focuses on showing fake overlays that ask the user to provide sensitive credentials and payment information. In addition to this type of attack, the implant can also download and run other payloads, or execute remote commands and operations without the user's permission.
Copies of the MasterFred Malware were discovered on 3rd-party app stores, as well as on the official Google Play Store. We advise our readers to be extra vigilant when downloading new applications – make sure that they have excellent reviews, and a decent download count. If they do not meet these requirements, you should only proceed with the download if you have protected your Android device with up-to-date anti-malware software.
