This Android Malware Resets Your Device After Stealing Your Money

BRATA malware factory reset phone after money theft

While Android is giving way to customization and other useful features, it is also making room for cyber attackers to access people’s or steal their money, causing privacy issues. Over the years, we have seen various malware such as Ghimob, Blackrock, and xHelper affect thousands of Android devices. Now an evolved version of the malware program BRATA has been discovered that can reset your Android device to factory settings after stealing your money using e-banking apps.

This is how BRATA malware steals your money!

A recent study report from a cybersecurity company called Cleafy describes the BRATA malware. According to the report, BRATA is primarily a banking Trojan that can remotely access users’ Android devices and steal their money through banking apps. However, the latest version of the program also allows attackers to remotely reset an Android smartphone to factory settings after malicious activity.

The malware works just like any other trojan and uses fake login pages to collect sensitive user data like their bank details and then steal their money. According to Cleafy, attackers can place fake login pages on a user’s device using BRATA. After that, the program can retrieve the user details from e-banking accounts and steal money without the user’s knowledge.

Additionally, with the new factory reset functionality, attackers can remotely reset an Android device to remove any evidence of the malware on a user’s device. By the time a user discovers that they have been robbed, the attackers can easily get away with their goods.

For those who don’t know, BRATA is short for Brazilian Remote Access Tool Android and originally appeared in Brazil a few years ago. Over the years, however, it spread to other parts of the world. According to reports, some BRATA-based apps appeared in the Google Play Store last year before being removed by Google.

The researchers also wrote that earlier versions of BRATA have been spotted in the US before. However, the newer version was recently spotted targeting banking institutions in the UK, Italy and Poland.

While there’s not much you can do, we recommend downloading your apps from legitimate sources rather than sideloading them from sketchy websites. In addition, you should always read user reviews and get more information about an app before downloading it to your Android device to stay protected from such malware attacks.

Related Posts