FluBot

FluBot is a sophisticated SMS computer virus –specifically a banking Trojan– of global reach which aims to steal private data from Android smart phones. Unlike much malware, FluBot has proven exceptionally durable, coming in waves or "campaigns" with each redesign. It masquerades as innocuous messages such as missed calls and deliveries, asking the receiver to click links that download spyware.[1] A variant, TeaBot, has infiltrated official app stores, including Google Play Store, in the guise of a QR-code reader.[2][3][4]

16,000 reports of FluBot were reported to the Australian Competition & Consumer Commission's Scamwatch in Australia across eight weeks in 2021.[5] Although coverage of FluBot primarily centres on Australia[6] and New Zealand,[7] the scam has also targeted European countries such as Germany and Poland in 2022 campaigns.[5]

In May 2022, FluBot infrastructure was taken down in an operation involving 11 countries and it is not expected to resurge.[8][9]

  1. ^ Daoud, Elizabeth (26 January 2022). "Why you should delete these text messages as soon as you get them". Seven News. Retrieved 15 May 2022.
  2. ^ "New FluBot and TeaBot Global Malware Campaigns Discovered". Bitdefender Labs. 26 January 2022.
  3. ^ Lakshmanan, Ravie (27 January 2022). "Widespread FluBot and TeaBot Malware Campaigns Targeting Android Devices". The Hacker News.
  4. ^ Montalbano, Elizabeth (January 26, 2022). "Threat Actors Blanket Androids with Flubot, Teabot Campaigns". threatpost.com.
  5. ^ a b Chugh, Ritesh (28 April 2022). "Can your mobile phone get a virus? Yes – but you'll have to look carefully to see the signs". The Conversation. Retrieved 15 May 2022.
  6. ^ Taylor, Josh (20 August 2021). "Australians hit by 'Flubot' malware that arrives by text message". The Guardian. Retrieved 15 May 2022.
  7. ^ Brislen, Paul (22 April 2022). "FluBot: Nasty phone virus sends spam messages that can cost you thousands". The New Zealand Herald. Retrieved 15 May 2022.
  8. ^ "Takedown of SMS-based FluBot spyware infecting Android phones". Europol. 1 June 2022.
  9. ^ Toulas, Bill (1 June 2022). "FluBot Android malware operation shutdown by law enforcement". BleepingComputer.