Android owners told to delete ‘clone’ app NOW over fears it can read your messages and steal bank card info
Share:
A NEW strain of malicious Android software has been found masquerading as a 'premium' version of a popular messenger app. The rogue 'clone' app, once downloaded, gives hackers a key into your device whereby they can read everything on your screen, including your text messages and bank card information.
![[Telegram is a messenger app like WhatsApp and Signal]](https://www.thesun.co.uk/wp-content/uploads/2025/01/telegram-app-logo-seen-illustration-929536342.jpg?strip=all&w=960){kind=logo}
The app advertises itself as 'Telegram Premium' to hide a malware form known as FireScam. Telegram is a messenger app like WhatsApp and Signal. But no such 'premium' version exists. Cybersecurity researchers at Cyfirma discovered the app being distributed on phishing websites that mimic the RuStore - Russia's version of the Google Play Store.
![[The malware is only targeting Android devices]](https://www.thesun.co.uk/wp-content/uploads/2024/08/2020-samsung-electronics-co-set-788988876.jpg?strip=all&w=960)
While it's good news the app is not available to download on the official Play Store, it could leave Android owners who are open to sideloading at risk. The 'Telegram Premium' malware requests permissions to monitor notifications on your device, as well as all SMS and phone calls the second it is downloaded.
![[Cybersecurity researchers at Cyfirma discovered the app being distributed on phishing websites that mimic the RuStore - Russia's version of the App Store or Google Play Store]](https://www.thesun.co.uk/wp-content/uploads/2024/05/computer-programmer-hacker-prints-code-899400952_2a73eb.jpg?strip=all&w=960)
As victims open the app, they are asked to input their Telegram login which allows hackers to steal their credentials for the messaging service. Once hackers have free reign over the victim's Telegram account, they transfer any stolen information to a separate database.
Here, hackers can trawl through all the information and filter it for valuable details, according to researchers. The malware also keeps a close eye on any online transactions made via the Android device, which might allow hackers to capture a victims financial details.
