A new Trojan is doing the rounds in the Android world: disguised as an update for Google Chrome, the malware hijacks various system functions and forwards sensitive information to unknown third parties. In the course of infection, even installed virus scanners are deactivated and thus bypassed. The only solution currently seems to be a complete reinstallation of the operating system. The malware's distribution method is basically simple: the user is prompted to install an alleged update for the Chrome browser via URLs that resemble official Google services. However, as the URLs change regularly, they often fall through the cracks of the relevant filters. The file offered to unwary users is called "Update_chrome.apk". After installing the APK file, the malware first obtains administrator rights and then searches for any virus scanners. The Trojan is able to find and deactivate Kaspersky, ESET, Avast and Dr. Web, among others.bank details and credit card numbers are requestedOnce this is done, the Trojan has access to outgoing and incoming calls and text messages and forwards collected data. The malware can even interrupt an active call. Furthermore, when opening the Play Store, users are shown a fake page asking for bank details and credit card number. So far, no secure method has been found to remove the malware afterwards. As mentioned at the beginning, the only feasible way is to reinstall the operating system with the associated inconvenience.
Accordingly, we advise increased caution when installing APK files in the near future or refer to official sources such as the Play Store or the Amazon App Shop.

www.giga.de/apps/google-chrome-apk/news/chrome-fuer-android-gefaehrlicher-trojaner-tarnt-sich-als-update/