PCMag.com is a leading authority on technology, delivering Labs-based, independent reviews of the latest products and services. Our expert industry analysis and practical solutions help you make better buying decisions and get more from technology.
Antivirus provider ESET spotted the Trojan program. A fake Clubhouse website at “joinclubhouse[.]mobi” has been circulating the dangerous app over the internet. The site itself looks identical to the real Clubhouse website, but it claims to offer an Android version of the app from the Google Play Store. However, if you download it, the Trojanized program will attempt to steal your logins from 458 online services, including social media platforms, cryptocurrency exchanges, and banking apps.
Malicious web claiming to offer #Clubhouse for Android spreads banking trojan Blackrock. It lures credentials from 458 apps – financial, cryptocurrency exchanges & wallets, social, IM and shopping apps. There is currently no official Clubhouse app for Android. #ESETresearch 1/2 pic.twitter.com/azlxjvIgNO
— ESET research (@ESETresearch) March 16, 2021
Although the fake website claims to offer the Clubhouse app from the Google Play Store, it’ll actually deliver the program via its own server—a notable red flag. Once installed, the Trojan will then try to steal passwords by generating a fake login window over the apps you open, such as Facebook, Twitter, or Netflix. The fake window will then record whatever you type, and ferry off your passwords to the hacker’s server.
“Using SMS-based two-factor authentication (2FA) to help prevent anyone from infiltrating your accounts wouldn’t necessarily help in this case, since the malware can also intercept text messages,” ESET added. “The malicious app also asks the victim to enable accessibility services, effectively allowing the criminals to take control of the device.”
It’s true Clubhouse is working on an Android version of the app. But it probably won’t arrive for a few more months. Expect it to be released on the company’s official website and via the Google Play Store. As for the fake “joinclubhouse[.]mobi” website, it currently triggers a malware warning if you attempt to visit it on the Chrome browser.
This article originally published at PCMag