According to BleepingComputer, Escobar malware has affected over 190 institutions across 18 countries. A known Android banking Trojan, Aberebot, has changed its name to 'Escobar', an infamous Colombian drug lord, Pablo Escobar. This malware with new features actually enters your device through an app. It is normally impersonating an app like the McAfee antivirus app that can be found on the Google Play Store.
The MalwareHunterTeam posted a warning on Twitter about the suspicious MacAfee APK. Aside from stealing data from smartphones using Google Authenticator, it monitors your online activity, tracks phone calls and messages, tracks your location, injects new URLs into web browsers, and controls your device's screen using VNC Viewer, a screen-sharing tool with remote control features. The team has also found that the Android package was named "com.escobar.pablo".
When making online transactions, it is important that you verify the websites and apps that you use. Here are some ways to protect your devices from this Escobar Trojan:
Always keep an Android antivirus app on your phone.
Monitor your device if there are suspicious notifications.
Always turn on your 'Google Play Protect'.
Use two-factor authentication (2FA).
Avoid installing any app from outside sources, use Google Play Store only.
Verify apps before installing them on your device.
Avoid giving unnecessary access to apps.
If you have noticed unusual activity, you should disable your internet connection and remove the SIM card, and don’t forget to take important backups right away before you can Factory reset your phone.
Highly sophisticated malware like Escobar Trojan can potentially be used to target enterprises for corporate espionage, phishing, and even unauthorized online banking transactions. Always ensure that you verify your anti-virus notifications and take action accordingly.