How to Protect Your Android Device from FluBot Malware

by -
Photo: rafapress (Shutterstock) – FluBot is a threat to your Android phone; here’s how to keep it safe.

Can we all agree as a tech community that scams and harmful hacks are terrible and that we should stop doing them? No? Back to reality, your Android phone is being attacked by another another malware fraud, which is employing yet another malicious approach. Here’s everything you need to know about FluBot, as well as how to keep your data safe.

FluBot’s Brief History

FluBot is not a new danger, but it is having a renaissance. The virus initially appeared in early 2021, beginning in Spain and spreading over the UK and the rest of Europe.

It infects victims’ devices by sending an SMS that seems to be an official notice from a delivery firm, informing them that a shipment has arrived and prompting them to touch a URL to track it.

When you do this, a screen appears advising the consumer to download a tracking software for the item.

Surprisingly, the tracking software turned out to be spyware, infecting the smartphone with malicious malware that spied on the user’s smartphone activities. Of course, the aim was to obtain banking login information so that hackers could steal your bank accounts. How considerate.

Screenshot: certnz

FluBot has a few new tricks under its bag this time

Hackers like the ones behind FluBot profit from people being unaware of their methods. As a result, they are expected to see decreasing results as the globe learns about the virus; government agencies in the FluBot’s targeted nations informed residents about the malware, revealing the sort of message that would try to deceive users into downloading the issue in the first place.

So, what are the options for FluBot’s coders? They must progress. The hackers are drawing the world’s attention to FluBot, much as the Inception team attracted the mark’s attention to the nature of the dream.

When you click on the link in their fraudulent text messages, a pop-up warning that your phone is infected with FluBot appears. According to FluBot, the only method to get rid of FluBot is to download a “Android security update.” (Unsurprisingly, the “Android security update” is infested with FluBot.)

Screenshot: certnz

This pop-up might potentially be a notice that you have an unique voicemail that you can only listen to through a certain app (not one of their most convincing ideas, in my opinion).

These scams are becoming more common throughout the world; CERT NZ, New Zealand’s Computer Emergency Response Team, just published an excellent blog article on the issue for its people, but it applies to anybody who may come across the FluBot scam.

How can you keep FluBot from infecting your phone?

To begin with, do not click on any of these links. Strange links, such as those requesting you to monitor a delivery you didn’t order, should be avoided. Always check the validity of a link before accessing it on a smartphone, tablet, or computer. FluBot only affects Android phones; iPhones may get the message and open the pop-up, but the software cannot be downloaded.

You may also disable the ability for your Android apps to install new unknown apps without your consent. Apps like FluBot will be unable to infiltrate your device as a result of this.

Go to Settings > Applications > Special access > Install unknown apps on Android 8 or later, then make sure “Not allowed” is selected for your apps. Change any app that reads “Permitted” to “Not allowed.”

If you’re using Android 7 or earlier, go to Settings > Security (or Lockscreen and Security) and turn off “Unknown sources.”. If you clicked on the link in the text message but did not download any apps, there appears to be no danger at this time. FluBot, as far as we can tell, is only successful if you download the program linked in the pop-up;

The link in the SMS simply brings you to the pop-up, so that procedure shouldn’t infect your phone with malware on its own. If you did click on the SMS link, CERT NZ suggests changing your passwords simply to be cautious.

Let’s pretend you clicked the link in the pop-up and downloaded the FluBot software that was concealed within. Don’t get worked up! Factory reset your phone or restore from a backup made before you downloaded the FluBot app to fully remove any trace of FluBot from your device.

Then, for each of your linked accounts, update all of the passwords. You should also check with your bank to see whether your account has been tampered with. After that, you should never click or touch on any unusual links.