[go: up one dir, main page]
Skip to Main Content
Page Mobile Banner
PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.
  1. Home
  2. News
  3. Security

Android Malware Spoofs Uber's Interface to Steal Your Login

Symantec spotted the tactic in an Android Trojan circulating on third-party app stores.

By Michael Kan
January 4, 2018
Uber App

Security researchers have spotted Android malware with an appetite for Uber login information.

The trojan, which has been circulating on third-party app stores, goes after phone numbers and passwords for users of the ride-hailing service, according to the security firm Symantec.

SecurityWatch Once downloaded, the malware will spoof an Uber application interface over the phone's screen that asks for the login credentials. However, any data entered will actually be sent off to a remote server under the control of the malware's developers.

The malware is also quite persistent; the fake interface will pop up in regular intervals until the phone's owner finally enters their login information, Symantec said in a blog post.

Fake Uber App

After the credentials are entered, the malware employs another trick: it'll trigger the real Uber app to launch and activate a ride request. All of this looks like normal activity, but in reality it's the malware attempting to fool you into thinking nothing is wrong, Symantec said.

"This case again demonstrates malware authors' never-ending quest for finding new social engineering techniques to trick and steal from unwitting users," the company added.

Targeting ride-hailing users might sound strange. But in the past, stolen Uber accounts have been sold on the digital black market for around $4, giving buyers a cheap way to take car rides with the service.

Recommended by Our Editors

Security Threats
'ExpensiveWall' Malware Charged Android Users for Bogus Services

"We believe attackers use Uber credentials for two purposes. First, to allow fraudsters to ride by charging an unsuspecting user. Second, to compile a fuller picture when stealing identities," the company said.

The good news is that Symantec hasn't found this app on the official Google Play Store. "Users are likely in Russian-speaking countries in limited number. We don't anticipate such an app to be in wide scale distribution," the company said.

Nevertheless, the trojan serves as a reminder it's best to download mobile software from official app stores, which have far less malware than third-party app stores.

How Your Password Was Stolen
PCMag Logo How Your Password Was Stolen

Like What You're Reading?

Sign up for SecurityWatch newsletter for our top privacy and security stories delivered right to your inbox.

This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.


Thanks for signing up!

Your subscription has been confirmed. Keep an eye on your inbox!

Sign up for other newsletters

Microsoft Build

Hands On: Microsoft's 2024 Surfaces Level Up With Copilot AI, Arm Silicon
By Brian Westover
At Microsoft Build, Did We Just See the Spark of a PC-Laptop Revolution?
By John Burek
Everything We Saw at Microsoft's AI Event: Copilot+ PCs, Recall, Surface, More
By Michael Muchmore
Meet the Snapdragon X Elite Starting Lineup From Acer, Dell, HP, and Lenovo
By Michael Kan
Why Are Intel Processors AWOL in Microsoft’s New Surfaces?
By Joe Osborne
Copilot+ PCs Have Great Potential But Will Businesses Care?
By Michael J. Miller
First Look: HP Adopts Snapdragon X Elite Alongside an OmniBook Brand Revival
By Joe Osborne
Hands On: Lenovo Embraces Snapdragon X Elite CPU in New Yoga, ThinkPad AI PCs
By Matthew Buzzi
All
Microsoft Build Stories

Further Reading

iOS 17.5.1 Fixes Alarming Bug That Makes Deleted iPhone Photos Reappear
iOS 17.5.1 Fixes Alarming Bug That Makes Deleted iPhone Photos Reappear
By Joe Hindy
Man Arrested for Creating AI Child Sexual Abuse Material Using Stable Diffusion
Man Arrested for Creating AI Child Sexual Abuse Material Using Stable Diffusion
By Michael Kan
Feds Arrest 23-Year-Old for Allegedly Running Major Illegal Drug Site
Feds Arrest 23-Year-Old for Allegedly Running Major Illegal Drug Site
By Michael Kan
Google: Microsoft Is Unable to Keep Customers Safe From Cyberattacks
Google: Microsoft Is Unable to Keep Customers Safe From Cyberattacks
By Kate Irwin
US Offers $5 Million Reward to Stop North Koreans From Spying Via US IT Jobs
US Offers $5 Million Reward to Stop North Koreans From Spying Via US IT Jobs
By Michael Kan
FBI Takes Over BreachForums Again, Seizes Admin Telegram Channel
FBI Takes Over BreachForums Again, Seizes Admin Telegram Channel
By Kate Irwin
Google Takes a Page From Apple With Android Theft Protection
Google Takes a Page From Apple With Android Theft Protection
By Rob Pegoraro
Dangerous? Signal Blasts Google Effort to Use AI to Scan for Scam Phone Calls
Dangerous? Signal Blasts Google Effort to Use AI to Scan for Scam Phone Calls
By Michael Kan

TRENDING

About Michael Kan

Senior Reporter

Michael Kan

I've been with PCMag since October 2017, covering a wide range of topics, including consumer electronics, cybersecurity, social media, networking, and gaming. Prior to working at PCMag, I was a foreign correspondent in Beijing for over five years, covering the tech scene in Asia.

Read Michael's full bio

Read the latest from Michael Kan