Beware of Malicious App Disguised as a Flash Player That Steals Banking Credentials

Beware of Malicious App Disguised as a Flash Player That Steals Banking Credentials

Would you share this article with others to help inform them?

Mobile banking users should be aware of a malicious Android app that steals banking login credentials. The malicious banking app called "Android/Spy.Agent.SI," is a Trojan horse that was created by cyber-criminals, and disguised as a Flash Player to trick potential victims into downloading and installing it. The sophisticated banking Trojan or malware is able to create a fake login screen that will steal the potential victims’ online banking credentials and send it to cyber-criminals. The malicious app also has the ability to intercept SMS or text messages and can therefore, bypass SMS or Text Message two-factor authentication security feature, which was created to prevent access to online users’ accounts, even if their credentials (usernames and passwords) were stolen.

It is important that Android users, who are asked to install Adobe Flash Player, only do so via the Google Play Store.installing Android apps from anywhere else can be dangerous.

Cyber-criminals have created the following malicious websites that have the malicious banking Trojan:

  • www.flashplayeerupdate.com
  • www.adobeflashplaayer.com
  • www.adobeuploadplayer.com
  • www.adobeplayerdownload.com
  • www.adobeupdateplayer.com
  • www.adobeupdateplayeer.com
  • www.adobeupdateflash11.com

The websites above should never be visited since they have the malicious Android file called “FlashPlayer.apk.” The malicious file should never be downloaded or installed. And, Android users should only download apps from the Google Play Store to protect them against malicious apps.

How to Remove the Malicious Banking Android App

In order to remove the malicious app, administrator rights must be disabled or deactivated first. Please see the instructions below:

  • Go to “Settings
  • Select “Security
  • Select “Device administrators
  • Select “Flash Player
  • Select “Deactivate,” ignore the bogus message and choose “OK”.

If you are prevented from carrying out the instructions above, please restart your mobile device in Safe mode and repeat the instructions above.

Once the administrator rights have been removed, the malicious app can be removed using the following instructions:

  • Go to “Settings
  • Select “App/Application Manager
  • Select “Flash Player
  • Select “Uninstall

Note: Some of the names, addresses, email addresses and telephone numbers in email samples on this website may have been impersonated.

Please share what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.

Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com

Also, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent.

If you want to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews
(Total: 0)

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews. Also, anonymous posts cannot be deleted or edited, and when you make a post, we will use your IP address to display your approximate location to other users.

Write Your Comment, Question, Answer, or Review
Write your comment, question or review in the box below to share what you know or to get answers. Please revisit after an hour or more to view reponses or answers to you questions.

Your comment, question or review will be posted as an anonymous user because you are not signed in. Sign-in.

Beware of Malicious App Disguised as a Flash Player That Steals Banking Credentials