Flutter-Based Android Malware Targets Credit Cards and 2FA Codes

Researchers in cybersecurity have revealed the inner workings of the Fluhorse malware family on Android. The malware “represents a significant shift as it incorporates the malicious components directly within the Flutter code,” Fortinet FortiGuard Labs analyst Axelle Apvrille wrote in a report released last week.

Early in May 2023, Check Point discovered Fluhorse. This information described its attacks on customers in East Asia through rogue apps posing as ETC and VPBank Neo, which are well-known in Taiwan and Vietnam. Phishing is the malware’s primary entry point. The app’s ultimate objective is to send SMS-delivered two-factor authentication (2FA) codes, credit card information, and login credentials to a remote server controlled by threat actors.

Flutter-Based Android Malware Targets Credit Cards and 2FA Codes

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address

Flutter-Based Android Malware Targets Credit Cards and 2FA Codes

29-Jun-23

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address