The digital age of banking has resulted in personalized services being provided to its customers and payment processing has also become faster. This has enabled the banks to enhance their security measures and prevent frauds through technology enabled biometric systems. However, hackers have now invented a new way to scam you of money through the use of Web APK technology. With its help, hackers trick people into installing malicious apps on their phones. It becomes highly dangerous when Android users install unsecured banking web apps that urge customers to submit their login credentials and two-factor authentication (2FA) tokens, resulting in theft.
Earlier cyber criminals used to create new applications and upload them on Google Play Store. Once downloaded, they extract the necessary information of the customers and with the help of that transfer money from their bank account. After facing many similar cases, Google decided to implement a new security measure. This made it mandatory for web developers to require a DUNS number before submitting their apps to the Play Store. DUNS is a nine digit unique number used to verify businesses.
apk technology
cre trending stories
However, the Google Playstore is not required to install the Web APK on your phone. It helps users to install Progressive Web Apps (PWAs) on their devices. The PWA can be any app from Spotify to various banking apps. Through this, hackers have now found a new way to enter malicious applications on your Android device.
According to a report by Hacker News, the attack begins when users receive an SMS message asking them to update the banking apps on their phones. “The link in the message led to a site that used Web APK technology to install a malicious application on the victim’s device,” said the Computer Security Incident Response Team (CSIRT KNF), as quoted by Hacker News. CSIRT KNF is a group of IT security experts in the Polish financial sector.
Hence, it becomes important for you to be careful of such phishing attacks which are now taking place through web APKs.
Here are 3 ways you can protect your phone from malicious apps:
1) Install from official source: Always download apps from a trusted and authentic source like Google Play Store. This will block the entry of any malicious apps on your device. Don’t install apps from third-party sources. They often contain web APK links that can steal your personal information.
2) Avoid SMS App Links: Never install bank applications from any link received through SMS messages. Banks never ask their customers to download their services through text messages. Double check the source of the information before acting on it.
3) Install Antivirus: In the age of digital warfare, having an antivirus on your laptop and smartphone is vital. This will protect you from any expected virus or malware attack that may disrupt your system.