Android Malware Can Steal Your Login Data by Imitating Uber App

There’s no arguing that one of the greatest ideas for an app/service is Uber. It provides immeasurable help, starting off by offering you ride-sharing to the destination of your choice and now adding on food delivery.

But while it’s still a great service, the latest Android.Fakeapp malware variant steals important factors of Uber to make you think you’re using the Uber app when you’re really using the malware which is stealing your data.

The Steal

Everyone who has used the Uber app is familiar with how it works and the windows it uses, such as the login screen and the user location screen. And that’s how the malware tricks you into thinking that it’s real.

The malware pops up on an Android user’s screen intermittently with what appears to be an Uber login screen. It keeps showing up until the user is eventually tricked into believing that it’s really Uber looking for login details, which typically include the user’s phone number along with their password.

Once the user inputs their login details and clicks Next, they’ve just given their login details to the malware’s remote server.

It needs to be remembered what they’ve just given the malware along with their login details. This means the malware now has access to everything stored on Uber. Not only do they have your home address, they now have access to your credit card.


The Cover Up

But the malware isn’t content with just this. They want to make sure that you don’t suspect anything. After scamming your login details, it pops up another screen so that it doesn’t alarm you.

Cleverly, the malware pops up a screen that imitates the real Uber app. It shows you your current location, as this is what Uber would do, assuming you want a ride from your current location to another location.

In order to show this screen the malware uses the deep link URL of the real Uber app.

Deep links are used by apps to take you to specific content inside an app. It works similarly to a web URL, but instead of an exact website location, it’s an exact app location.

The user is completely fooled by this point and doesn’t suspect anything so that the malware can get away with stealing the information, leaving the user completely unaware.


Keeping Your Android Safe

This malware threat was reported by Symantec, a known software company that provides security. They, of course, suggest you use their software to keep yourself protected from this Android.Fakeapp malware variant and others.

But there are certainly other steps you can take as well. You should always keep your Android and software up to date. Additionally, you should only download apps from trusted sources and never from unfamiliar sites.

Also, be aware of the permissions that are requested by apps. Instead of just supplying the permissions automatically, be sure of who and what you’re giving these permissions to.

And, as always, be sure to keep all your information backed up. That’s always a good practice, not just in this case.

The Irony of Safety

Ironically, Uber offers its ride-sharing service to help you and in many ways keeps you safe, giving you safe transportation when you need it.

But this malware threat takes that safety and more away from you. But as long as you take the proper precautions, you can stay safe and keep all your data safe as well.

Have you come across this malware or a similar one that has tried to steal all your data? Let us know in the comments if this has ever happened to you.

Laura Tucker Laura Tucker

Laura has spent nearly 20 years writing news, reviews, and op-eds, with more than 10 of those years as an editor as well. She has exclusively used Apple products for the past three decades. In addition to writing and editing at MTE, she also runs the site's sponsored review program.


  1. I would like to know how to accomplish “taking proper precautions” on an Android device, as most phones/tablets won’t or can’t update to latest version.
    Also with most Android apps, and in particularly Uber, they require Full Permissions to install.

  2. It might make me a bit of a hermit/recluse….but when I go to install an app, if it asks for permissions / access to things I think it has NO BUSINESS having access to? I don’t install it. I can “do without” that neat new app, I can certainly use my phone without Twitter….Instagram…Pinterest…..Facebook…..WhatsApp….etc. I guess because its become so much easier to just “Allow” in order for you to get things done/installed/working………that society is now willing to give away their personal data all for the convenience of whatever it is they’re trying to install. I for one don’t trust lot of these companies and so I am very selective as to who gets access to my phone data….I also have read up the legal ramifications as to what might happen should a data breach occur, so all these companies / developers who have their wares in the Google Playstore?….be warned, if MY data is compromised the pending subpoenas and contact from my legal representation will be arriving at your doorstep forthwith!!

Comments are closed.