Netflix is one of the most popular apps worldwide with 203.7 million global subscribers at the beginning of this year. Subscribers can choose from a large selection of movies, TV shows and documentaries to stream across their devices. If you’re an old timer, remember when you received your new Netflix records by mail and returned them the same way.
This app spreads malware through your WhatsApp messages
Accepting the permissions requested by FlixOnLine opens your phone to attack
The “ad” that promoted the malicious app said, “2 months of Netflix Premium for free at NO QUARANTINE’S QUARTER * Get 2 months of Netflix Premium for free anywhere in the world for 60 days. Get it now HERE https: //bit[.]ly / 3bDmzUw. “Instead of free Netflix, those who installed the app ended up dealing with some malicious activity when certain permissions were given by the user.
When the FlixOnLine permission request is sent, it contains a small font that someone may never want to read. The permission request asks for your permission to let the app read all your notifications “including personal information such as contact name and the content of the messages you receive. If you press” agree “, you not only ask for problems, but you give the attacker the ability to disable / activate the Do Not Disturb feature on your phone.
As Check Point Research notes, “Malware is capable of automatically responding to victims’ incoming WhatsApp messages with a payload received from a command-and-control (C&C) server. This unique method may have enabled threats to distribute phishing attacks, spread false information or steal credentials and data from users’ WhatsApp accounts and more. “
For example. the bad actors behind FlixOnLine can spread more malicious software from malicious links, collect data from users ‘WhatsApp accounts, send fake and malicious information to users’ WhatsApp contact lists, and extort money from victims by threatening to send potentially explosive WhatsApp conversations to their contact list. If you use WhatsApp for business, the danger of installing FlixOnLine is obvious. To be honest, this threat also applies to friendly non-business relationships you have with others.
According to Check Point, the app was installed 500 times over a two-month period. Even if Google removed FlixOnLine, if you had previously installed it on your phone and not deleted it, the app could still wreak havoc on your phone. And if you are a WhatsApp user, you have been infiltrated and your personal information is not safe.
The best thing you can do if you have the app, according to Check Point Research, is to uninstall the app from your Android phone and change your passwords. This is a good example of how smart these bad actors have become and how their techniques allow them to go straight to the bounce without getting caught. By bouncer, we refer to Google Play Protect which will scan all the apps before they are installed on your phone.
Apparently, some malicious apps are capable of fooling Google by appearing normal as they go through the scan. The malicious software that causes malicious activity is added later on the line.