����vlog

Faketoken - a type of Android malware that was first identified a year ago - can steal private user data from more than 2,000 apps. The malicious software can also read and record victims' text messages and phone calls. Faketoken is especially dangerous because it's virtually undetectable after it's been downloaded. The Trojan can create fake overlays that grab information from apps like the Google Play Store, Android Pay and apps used to book flights, taxis and hotel rooms. Once a victim launches an application, Faketoken covers the interface with a fraudulent overlay that records anything the user types. Faketoken can hijack incoming text messages, which means hackers can access verification texts sent from banks. "All of the apps attacked by this malware sample have support for linking bank cards in order to make payments," cybersecurity firm Kaspersky Lab said. "However, the terms of some apps make it mandatory to link a bank card in order to use the service. As millions of Android users have these applications installed, the damage caused by Faketoken can be significant."The Moscow-based company believes Faketoken is still in its infancy, but warns Android users to avoid installing apps from unverified third-parties. Malware is becoming problematic for Android app developers and consumers. As of last spring, an estimated 1.3 to 1.4 billion people owned Android phones.As the popularity of the Google-developed operating system rises, hackers churn out new ways to steal personal or financial data, falsify ad revenue and spy on users. Last year, SophosLabs processed more than 8.5 million suspicious Android applications, and more than 50 percent were a form of malicious software or adware.