Security experts are warning Android users about a new threat posed by the Rokarolla bug, a malicious software that can spy on devices and steal sensitive information, including banking details. The malware can even create a fake lock screen to capture PIN numbers and passwords.
The Rokarolla bug is being spread through rogue websites that offer fake versions of popular apps like TikTok and Chrome. Unsuspecting users download these fake apps, unknowingly installing the malware in the process. Once installed, the malicious apps request various permissions, making it easy for cybercriminals to access personal data.
According to Zimperium, the creators of Rokarolla, the malware targets a wide range of financial, cryptocurrency, and social media applications. The threat is designed to evade traditional security measures, making it difficult to detect.
To protect against this threat, users are advised to only download apps from the official Google Play Store and to ensure that Google Play Protect is enabled on their devices. Sideloading apps from unknown sources increases the risk of downloading malicious software, so it is important to exercise caution when downloading applications.