niftycent.com
NiftyCent
US
Login
Marketplace
Discounts

New Android malware adds fake contacts to make scam calls look legit

At this point, I get so many spam calls that my blood pressure rises when numbers show up on my phone’s call screen. A new piece of Android malware seems to be designed around that instinctive revulsion, injecting fake contacts into your phone to make spam and scam calls look legitimate. It’s brilliant, in the evil way that only scammers can be.

This is a new variation on the known Crocodilus malware, which has a primary function of taking over an Android phone to find and steal crypto wallet info. But the new behavior, discovered by Threat Fabric, is particularly interesting. According to the report (spotted by BleepingComputer), the novel behavior of the malware creates fake entries in a user’s Contacts list. The idea is clever: instead of seeing an unknown number, you see a name like “Bank Support,” and it’s meant to put you at ease so you’re more vulnerable to social engineering attacks.

Crocodilus’ main functions appear to still be focused on theft of cryptocurrency and banking info, with malicious Facebook ads focusing on users in Turkey but expanding to larger operations in Europe, South America, and the United States. The social engineering aspect of the malware appears to be an afterthought… but it makes sense. If you have a Trojan program loaded onto someone’s phone and you’ve found that they have vulnerable bank accounts or crypto wallets, you might try passing their info off to a social engineering team to see if you can steal anything else of value. (Geez, it feels weird to think about this from the perspective of a hacker. I need a shower.)

So far, the Crocodilus malware has only been observed on Android, and only seen in delivery form via unsecured “sideload” installations. But spoofing contact data on the user side—as opposed to faking caller ID info—is a novel means of attack.

Keep this attack vector in mind. There’s no reason the same techniques couldn’t be used for, say, a phishing email via faked contacts in Gmail or Outlook. And no matter what operating system you’re using, don’t download apps from sketchy advertisements.

https://www.pcworld.com/article/2802105/new-android-malware-adds-fake-contacts-to-make-scam-calls-look-legit.html

Created 2d | Jun 3, 2025, 5:30:03 PM


Login to add comment

Other posts in this group

Fanttik Aero X review: This robotic pool cleaner is an underwater monster
Fanttik Aero X review: This robotic pool cleaner is an underwater monster
Jun 5, 2025, 6:10:09 PM | pcworld.com
Get these ultra-fast USB-C cables on sale, now 2 for only $12
Get these ultra-fast USB-C cables on sale, now 2 for only $12

Whether you need to upgrade your slow, outdated USB-C cables or just

Jun 5, 2025, 3:40:18 PM | pcworld.com
I use this $18 box to safely plug in all my outdoor smart devices
I use this $18 box to safely plug in all my outdoor smart devices

My smart home extends to both my front and back yards. But I have onl

Jun 5, 2025, 3:40:17 PM | pcworld.com
Microsoft is adding a simpler text editor than Notepad to Windows 11 soon
Microsoft is adding a simpler text editor than Notepad to Windows 11 soon

Following the

Jun 5, 2025, 3:40:15 PM | pcworld.com
Google Drive gets AI-generated summaries of changes made to files
Google Drive gets AI-generated summaries of changes made to files

According to a recent

Jun 5, 2025, 3:40:14 PM | pcworld.com
Disney’s free streaming ‘perks’ are just insulting
Disney’s free streaming ‘perks’ are just insulting

Disney is in a bind. The company is struggling to keep its streaming

Jun 5, 2025, 3:40:13 PM | pcworld.com
Save $300 on Acer’s productivity laptop with extra-long battery life
Save $300 on Acer’s productivity laptop with extra-long battery life

Battery life is so important for a work laptop, especially when you’r

Jun 5, 2025, 3:40:12 PM | pcworld.com
Techie
Techie