Egypt’s National Telecom Regulatory Authority (NTRA) issued a warning over a newly identified wave of cyberattacks targeting Android users, in which malicious applications are used to steal sensitive financial data without victims’ awareness.
The alert, released through the authority’s cybersecurity arm, EG-CERT, highlights a deceptive attack method that begins with tricking users into downloading apps from untrusted sources, often disguised as entertainment services such as IPTV platforms.
According to the regulator, these applications are typically installed outside the official Google Play Store, making them harder to vet and more likely to contain hidden threats. Once installed, the apps request high-risk permissions, including Accessibility access and the ability to display overlays on top of other apps.
These permissions effectively grant attackers visibility into everything displayed on the device screen.
Cybersecurity experts warn that such access allows malicious apps to monitor user activity in real time, including capturing login credentials and sensitive financial information, particularly when users access banking or payment applications.
Unlike more sophisticated attacks, this method does not require rooting the device. Instead, it relies on social engineering, convincing users to grant permissions themselves, making detection significantly more difficult.
Once attackers obtain login credentials, they can execute unauthorized financial transactions within minutes, the authority warned. The speed and stealth of these attacks increase the risk of significant financial losses before users become aware of the breach.
The NTRA has urged users to adopt stricter security practices, including the download of applications exclusively from trusted platforms such as the Google Play Store, avoiding installation from unknown or unofficial sources, regularly reviewing apps with overlay permissions, and granting Accessibility access only to verified, essential applications, as well as heightened Vigilance Required.
The regulator stressed that negligence in managing app permissions could lead to full device compromise and data theft. As mobile banking and digital payments continue to expand, authorities are calling for increased user awareness as the first line of defense against evolving cyber threats.
Follow the latest news on Google News
