- Devices running Google Chrome are being attacked by a new type of malware
- It’s called Brokewell and it claims to be an official update
- After infiltrating the phone, it steals the data and takes control
Cyber security firm ThreatFabric has warned of an epidemic of computer viruses and malware called Brokewell. It’s a big mess masquerading as a Google Chrome website. If you drop it into your phone, it can make a big mess.
Don’t miss: The dreaded banking malware has returned to the Czech Republic. It will rob users of money
Very dangerous Brokewell virus
As reported by ThreatFabric, the way this malware works is very simple – an unsuspecting user downloads it to their phone by masquerading as a web update for Google Chrome.
The fake update page looks quite credible at first glance, using similar visuals and branding to the real Chrome update prompts. However, there are subtle hints that something is amiss, such as clumsy wording and some misplaced visuals.
Brokewell is one of the most unpleasant malware threats, because it attacks personal data, which it sucks from the phone practically immediately after gaining access – it can be bank details, address, e-mail, phone number or other sensitive information.
Looks like an update for Chrome
At the same time, Brokewell appears to be an active project in development. “We expect further evolution of this malware family as we have already seen its daily updates,” wrote researchers at ThreatFabric.
Unfortunately, the experts do not say where this type of malware is rampant, but it is very likely a phishing campaign on social networks, possibly in e-mail and on WhatsApp. So if someone sends you “guaranteed information” about updating Chrome, beware.
What can you do to avoid Brokewell? As a general rule, never download apps or updates from sources other than the official Google Play Store. This is because it offers the Play Protect protection screen, which will not pass through most fraudulent attempts.
Preview photo source: Freepik / Freepik, source: ThreatFabric