For the purpose of blackmailing or using them in criminal operations.. A warning of a strong attack targeting Android users' private photos

Kaspersky Security has warned Android users of a new scam that uses a fake version of the popular Chrome web browser to steal private and personal photos.

According to a report by the British Express website, the recent SMS attack sends a simple text message indicating that a package has been sent to the recipient but not delivered and asks them to click on a link, and that link takes the victim to a fake web page, where he is urged to Download apps like Chrome or the delivery company's Android app.

Once installed, the fake apps then start installing the malware called “Roaming Mantis” that can end up wreaking havoc on devices and handing over personal files to hackers.

And unlike some attacks that try to access banking information, this latest threat goes straight to your photo album, where it is perfectly capable of downloading every single one of your photos and albums.

The security team at Kaspersky, which first discovered the fraud, says that hackers can then use these images for huge financial gain.

Besides many users who store photos like passport photos and bank card details there is also a chance to extort money from the victim if they have more private photos stored on their device.

“Criminals have two goals,” Kaspersky explained, “One possible scenario is that criminals steal details from things like driver’s licenses, health insurance cards or bank cards, to sign up for contracts with QR code payment services or mobile payment services, and criminals can also use Stolen photos to get money in other ways, such as sexual blackmail.

Rumming Mantis is not new, as it was first detected in parts of Asia in 2018, however this new warning came, as the attack appears to be spreading rapidly across Europe with France and Germany currently among the worst affected areas.

And if you are wondering if these types of attacks really work, the answer is yes.

Kaspersky released data on how often fake apps were downloaded, and it appears that thousands are being scammed every day.

In fact, the malicious version of Chrome has now been installed more than 65,000 times in France alone.

Speaking about this new threat, Kaspersky said, “It has been almost 4 years since I first noticed the Romming Mantis campaign, and since then the criminal group has continued its offensive activities using various malware, and in addition to this the group has now expanded its geography by adding two European countries to the targeted areas. We expect these attacks to continue into 2022 due to strong financial motivations.”

It can be said that the advice is clear, delete any text messages if you are not sure of their source, and do not download any applications unless you are sure that they are from an official source.