Beware of Digital Invitation APK Fraud Mode!!!
In several WhatsApp groups in the Undiksha environment, there are wedding invitation APK shipments from WhatsApp numbers that have been hacked. Please don’t click on the file!
How does it work?
The workings of this cybercrime mode are as follows. If clicked the application will ask for access to perform activities read via SMS or MMS. If allowed, the SMS stored on the cell phone or SIM card will be read by bad actors.
The next requested access is to perform the activityReceive SMS will also be requested. If allowed, bad actors can monitor and/or delete messages without the knowledge of the victim.
The next requested access is to perform the activity and SMS. If allowed, bad actors can send paid SMS without the need to conform to the victim first.
When all of these requests are granted, the application is installed on the victim’s Android device, bad actors have the possibility to access SMS-Banking information history such as pin codes from SMS history which are usually not deleted by the victim. Armed with this information, bad actors can send money from the victim’s account.
What needs to be done?
The wedding invitation file is a very dangerous malware that can remotely steal cellphone data, including Internet banking data. For those who have already installed the Wedding Invitation, please do the following steps:
– Turn off data packets/Wifi
– Uninstall all mobile banking applications
– Backup important data
– Format dan Reset Factory
To maintain security, make sure the application installation settings on your cellphone do not allow installation from outside the Google Play Store (Unknown Sources), usually in Settings->Security->Unknown Source Installations
A complete security guide regarding Fraudulent Wedding Invitations via APK from the National Cyber ??and Crypto Agency (BSSN) can be accessed athttps://bssn.go.id/imbauan-keamanan-modus-penipuan-menggunakan-undangan-pernikahan-elektronik-apk/