Suara.com – New malware has been found on the Google Play Store in an app that is a fake version of Netflix, the movie streaming platform currently used by millions of people around the world.
The app, called FlixOnline, claims to offer users two months of “premium” Netflix access for free and has now been removed by Google from the Play Store.
The Check Point Research blog revealed that the malware on Google Play hidden in the FlixOnline application was able to spread itself through users’ WhatsApp messages.
If the user downloads the app and grants the malware “appropriate permissions”, it can automatically reply to the victim’s incoming WhatsApp messages.
Flood the Exciting Ramadan Program on Facebook, Instagram, and WhatsApp
The blog states that this could easily allow hackers to initiate phishing attacks and steal personal user data from the target’s WhatsApp account.
Because not many people know, unfortunately before it was deleted by Google, the application had been downloaded by more than 500 users.
Pesan berbahaya yang dikirim ke pengguna WhatsApp berbunyi, “2 Months of Netflix Premium Free at no cost For REASON OF QUARANTINE (CORONA VIRUS)* Get 2 Months of Netflix Premium Free anywhere in the world for 60 days. Get it now HERE: https://bit[.]ly / 3bDmzUw “.
Not only that, once the user’s permission is given to the malicious application, the malware displays the landing page it receives from the C&C servers and immediately hides its icon, making it difficult for the user to delete the malicious application.
Reporting from Mashable, Friday (9/4/2021), although the FlixOnline application claims to allow users to view Netflix content.
Welcoming Ramadan, Facebook, Instagram and WhatsApp Release New Features
The app has been designed by scammers to monitor users’ WhatsApp chats and notifications, so that it can record automatic replies to incoming messages via content it receives from remote command and control (C&C) servers.