In the meantime, tens of thousands of Dutch people have already fallen victim to malicious text messages urging the recipient to install so-called apps of delivery services outside the Play Store. This is a large-scale malware attack, and the police are warning to delete the text messages.
Malware text messages
At the moment false text messages are circulating in the Netherlands that supposedly come from well-known delivery services such as UPS or DHL. In fact, these are impostors who try to convince their victims that a package is on the way that can be tracked with the accompanying app. Although it is supposedly not in the Google Play Store.
Tens of thousands of Dutch people have since fallen for it, RTL knows that. We already warned about these fake text messages on Tuesday, and the police are now also calling on Twitter to immediately delete such messages. After all, you can simply download the real apps from UPS and DHL from the Google Play Store.
Er gaan sms’jes rond om apps te installeren om postpakketten te volgen. Die apps zijn niet van een bezorgdienst, maar van criminelen die via de app wachtwoorden en bankinformatie stelen. Krijgt u zo’n sms? Gooi hem weg. Officiële apps vindt u in de Play Store. pic.twitter.com/q8iKlz6MuO
— Politie Nederland (@Politie) May 26, 2021
Looting bank account
Anyone who does download the malicious apps on their phone will first receive the notification in which your phone asks for permission to download apps outside the Play Store. If you go further, you will bring in multiple malware apps that are capable of looting your bank account, because they recognize which banking app you are using and then succeed. Every time you transfer money, the apps secretly try to modify the recipient. In addition, you also transfer a larger amount than was previously foreseen. It concerns two forms of malware called: Anatsa and Flubot.
Eight things this malware is capable of:
- download fake mobile banking apps on your phone
- send text messages to further spread the malware
- realtime on your phone
- perform actions on your phone on your behalf
- install a keylogger (a keylogger can see what you type, e.g. passwords)
- copy your contacts
- open your apps
- change your text input
What is often striking about the text messages is that they are written in bad Dutch, and there is also no fake PostNL app in circulation. This indicates that the criminals are active in several countries, but that the Netherlands is not the largest market for them. Are you worried that your phone may be infected? In this article, we explain in detail how to discover malware and what you can do about it.