This wicked new Android malware steals passwords! Know how to protect your phone from this banking Trojan

tech.hindustantimes.com:

A vicious new malware has been found by cybersecurity experts which is claimed to be extremely dangerous for the safety of your bank account. This new malicious malware actually steals =passwords of Android users putting their privacy, and security at risk with the potential threat of financial fraud. Surprisingly, the new malware is an upgraded version of the previously found banking Trojan back in 2021. And now, it is active again!

Cyble Research Labs reported that it accidentally came across a tweet from a researcher who mentioned ERMAC 2.0 distribution. ERMAC is a banking Trojan for Android that was first spotted in late August 2021, when it was discovered targeting Poland. ERMAC 1.0 had the ability to steal the credentials of 378 different applications. On a cybercrime forum, the Threat Actor was renting it out for $3K each month. Shockingly, Cyble Research Labs revealed that it has recently discovered an improved version – ERMAC 2.0 – is available for hire on underground forums for $5K/month and targets 467 applications for credential theft.

The ERMAC 2.0 malware is extremely dangerous for Android phones. Once someone unknowingly installs it via a fraudulent app, then it asks for as many as 43 permission requests. And if these permissions are granted, online fraudsters can take full control of the user's device. Notably, most people grant these permissions while downloading apps. From SMS access, contact access, system alert window creation, audio recording, or full storage read to even access to writing on the device, an online hacker can have full control of your phone. That simply means, that whenever the user tries to log onto any portal, then the hacker can have access to that too. Ominously, it results in the