Overview

• The Cyber Defence Alliance, UK Finance, Cifas and ThreatFabric have jointly issued a public warning about a surge in Android malware targeting UK mobile users.
• Malicious apps disguised as file managers, PDF readers, phone cleaners and browsers can appear benign then activate hidden updates to deploy credential-stealing features.
• Attackers use overlay techniques to present fake banking login screens, deceptive “busy” messages to block app exits and requests for excessive permissions like accessibility access.
• Experts urge users to install apps only from verified sources, check developer information, keep devices up to date and report any suspicious prompts or behavior to their banks.
• The coalition warns that international crime networks are behind these sophisticated campaigns and advises heightened vigilance to protect personal and financial data.