TL;DR
- Researchers have discovered a new malware that gains deep access to your phone and obtains high-level permissions via wireless ADB to empty your bank accounts.
- This is an enhanced version of the RedHook remote access trojan spotted last year, but with multiple anti-detection functions.
- Though this malware was originally targeted at victims in Vietnam, it has since shown signs of expanding to other parts of Southeast Asia, including Indonesia.
Wireless ADB (Android Debug Bridge) is one of those tools that makes life a little easier for developers and enthusiasts alike. On the other hand, some of these tools continue to be exploited by malicious actors to facilitate mass financial scams on unsuspecting victims. An extensive report now discloses one such malware.
Cybersecurity research firm Group-IB details how this Android remote access trojan (RAT), known as RedHook, infiltrates devices when victims click links sent via text messages, phone calls, email, or other social media platforms. Attackers may impersonate support agents or employees of trusted and popular organizations to trick users (via Bleeping Computer).
​Â