Understanding Brokewell: A New Android Trojan Targeting Banking Data

In this article, we’ll delve into the workings of Brokewell, a newly discovered Trojan targeting Android users, capable of stealing sensitive banking information. Understanding its modus operandi is crucial to safeguarding your financial assets. We’ll also provide practical tips to avoid falling victim to this malware.

What is Brokewell and How Does it Operate?

Brokewell is categorized as a Trojan, a malicious software that infiltrates devices through executable files. Typically, users are deceived into downloading seemingly harmless files or applications, unaware of the embedded virus.

To infect devices, scammers deploy a fake Chrome update page online. Users are prompted to install a purported update, leading to the download of a fraudulent APK file. These files serve as Android executables for app installation but harbor the Trojan within.

Once installed, Brokewell displays a fake prompt, requesting the user’s Android lock code to proceed with the Chrome update. By obtaining this code, perpetrators gain access to the device.

Subsequently, the Trojan clandestinely collects various data from the device, including call logs, location, and even audio recordings. Screen activity can also be recorded, with all gathered information transmitted to cybercriminal servers.

With this data at their disposal, attackers monitor banking app usage, capturing login credentials and access codes. This breach grants unauthorized entry to the victim’s bank account.

While current attacks primarily target German Android users, the potential for spread to other regions, including Spain, remains a concern. Therefore, exercising caution is imperative.

Preventing Brokewell Infections:

To mitigate the risk of falling victim to this Trojan, proactive measures are essential. Firstly, exercise vigilance when downloading APKs, ensuring authenticity by verifying the source URL.

Avoid downloading APKs for apps readily available on official app stores like Chrome. If necessary, limit downloads to trusted repositories or official websites to minimize risks associated with random sources.

READ:  Android 12L: Google Adapts its System for Tablets, Foldable, and Chromebooks

Lastly, bear in mind that Chrome updates are not distributed via APKs or executable files. Any webpage suggesting otherwise likely harbors malicious intent. Similarly, your screen lock PIN is unnecessary for app installations, serving as a red flag for potential scams.


Brokewell poses a significant threat to Android users, particularly those utilizing banking applications. By understanding its operation and implementing preventive measures, users can fortify their defenses against potential breaches. Stay vigilant, exercise caution, and prioritize security to safeguard your financial assets from emerging threats like Brokewell.

This post may contain affiliate links, which means that I may receive a commission if you make a purchase using these links. As an Amazon Associate, I earn from qualifying purchases.


Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!