Malware Disguised as Uber's Android App Steals Your Login Details

Just as Uber was planning to rebound and put 2017 in the backseat, it seems to be caught up in the rubble of another cataclysm – merely at least this time the visitor is not at fault. Security house Symantec has discovered a imitation Uber app making rounds on the APK stores online that is typically used to steal credentials of users.

The malicious app is an impressively mimicked version of the original Uber app and doesn't requite users the slightest hint well-nigh its mischievous nature. Instead of hurrying to get the chore done, the rogue app uses deep links to Uber'due south interface, and thus, tricks users into believing that they are using the legit app.

Malware Disguised as Uber's Android App Steals Your Login Details — Fake Uber app's interface with hit resemblance to the original app

The inconspicuous malware randomly wakes from its deep sleep to prompt users to enter their username and countersign and so continues to part just like the original app. After a successful login, the app shows the users' current location by pulling information from the real app using Uber's API. This does non trigger instant panic as the infected user has no reason to exist suspicious.

The user ID and password are sent directly to hackers who try to hack other accounts associated with this registered e-mail or mobile number along with the same countersign. The gathered credentials are as well sold to other hackers and 3rd-parties through the Nighttime Web.

Symantec notes that the app is non bachelor on the Google Play Store, and insists that users must avoid sideloading apps from unauthorized sources, particularly those originating in Russia,equally the company revealed the app is primarily in Russian.

This example again demonstrates malware authors' neverending quest for finding new social technology techniques to trick and steal from unwitting users.

Likewise, Uber has issued a warning to its users, urging them to download apps simply from "trusted sources".

We want to protect our users even if they make an honest mistake and that'south why we put a collection of security controls and systems in identify to help detect and cake unauthorized logins even if you accidentally give away your countersign.