Cybercriminals are exploiting Meta’s advertising platform with fake offers of a free TradingView Premium app to spread the Brokewell Android malware. This sophisticated campaign targets cryptocurrency users and allows remote access, data theft, and device control. #Brokewell #TradingView #AndroidMalware
Keypoints
- The fake ads use TradingView branding to lure mobile users into installing malicious apps.
- The malicious app requests accessibility permissions and covers the screen with a fake update prompt.
- Brokewell malware can steal cryptocurrencies, bypass 2FA, record activity, and control devices remotely.
- The campaign has been active since July 2023 with over 75 localized ads targeting Android users.
- It is part of a larger operation that previously used Facebook ads to target Windows users with impersonations of well-known brands.