Fake apps are a big problem, and their clever social engineering tricks make them hard to catch. 

There are tons of these apps out there mimicking popular apps like PayPal and Spotify. Security researchers have found another fake app pretending to be the premium version of Telegram, a messaging app with over a billion downloads. Hackers are using this app to spread malware called FireScam. It can steal everything you type on your Android phone and other personal info. 

Since it tracks your keyboard, it also gets all your passwords, which could give hackers access to sensitive data.

I’M GIVING AWAY THE LATEST & GREATEST AIRPODS PRO 2

What you need to know about FireScam

As reported by threat management company Cyfirma, FireScam is a type of malware that targets Android devices to steal personal information. It works like spyware, keeping an eye on what you do on your Android phone, such as reading your notifications, messages, clipboard content and more. 

Hackers are spreading FireScam by pretending it’s a premium version of Telegram. They’ve created a fake website on GitHub that looks like RuStore (a real app store in Russia). When people visit this fake site, they’re tricked into downloading an app that looks like “Telegram Premium.” However, this app is actually a trap. Once installed, it downloads the FireScam malware onto your device and starts stealing your personal data.

To avoid detection, the app is heavily disguised using a tool called DexGuard. It asks for permissions to access your storage, check installed apps and install more software. When you open the app, it shows a fake login page that looks like Telegram’s. If you enter your details, it steals your credentials.

The stolen data is first stored in a Firebase Realtime Database, but hackers later move it to private servers. The malware also registers each compromised device with a unique ID so hackers can keep track of their victims.

A man using his phone (Cyfirma)

ANDROID BANKING TROJAN EVOLVES TO EVADE DETECTION AND STRIKE GLOBALLY

FireScam can steal almost everything on your phone

According to Cyfirma’s analysis, the FireScam malware is highly effective at stealing nearly all types of data from an infected Android device. It categorizes and sends anything you type, drag and drop, copy to the clipboard or even data automatically filled by password managers or exchanged between apps directly to the hackers.

The malware also monitors device state changes, such as when the screen turns on or off, and tracks e-commerce transactions to capture financial details. Plus, it spies on messaging apps to steal conversations and monitors screen activity, uploading key events to its server for further exploitation.

WHAT IS ARTIFICIAL INTELLIGENCE (AI)?

Fake Telegram Premium app (Kurt “CyberGuy” Knutsson)

ANDROID BANKING TROJAN MASQUERADES AS GOOGLE PLAY TO STEAL YOUR DATA

6 ways to stay safe from fake apps

1. Download apps only from official stores: Always use trusted app stores like Google Play or the Apple App Store to download apps. These platforms have security measures to detect and remove fake or harmful apps. Avoid downloading apps from random websites, pop-up ads or unofficial third-party stores as these are common sources of fake apps.

2. Verify the app’s developer: Before installing an app, check who created it. Look at the developer’s name and ensure it matches the official company behind the app. Fake apps often copy the names of popular apps but use slightly altered spellings or extra characters. For example, a fake might be called “PayPaal” instead of “PayPal.”

3. Pay attention to reviews and ratings: Reviews and ratings can give you insight into an app’s authenticity. If an app has mostly negative reviews, very few downloads or generic comments like “Great app,” it could be fake. Genuine apps typically have a large number of detailed reviews over time. Be cautious of apps with five-star ratings but no specific feedback.

4. Be cautious of app permissions: Check the permissions the app requests before installing. A flashlight app, for example, shouldn’t need access to your contacts or messages. If an app is asking for permissions that don’t align with its purpose, it could be a red flag. Always deny permissions that seem excessive or unnecessary.

5. Keep your phone and apps updated: Regular updates for your operating system and apps often include important security fixes that protect your device from malware. Turning on automatic updates can ensure you always have the latest protections.

6. Use strong antivirus software: Install strong antivirus software on your Android. These tools can scan apps for malware, detect suspicious activity and block harmful downloads. Strong antivirus software provides an extra layer of defense, especially when browsing or downloading apps. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.

SUBSCRIBE TO KURT’S YOUTUBE CHANNEL FOR QUICK VIDEO TIPS ON HOW TO WORK ALL OF YOUR TECH DEVICES

Kurt’s key takeaway

The FireScam malware is a powerful tool that can steal everything on your phone, and it’s tough to detect if you’re not careful. Such apps can’t be distributed through legitimate app stores like the Play Store or the App Store, so they rely on third-party stores and fake websites to spread. To stay safe, the best approach is to stick to verified app stores and avoid downloading from untrustworthy sources.

When was the last time you read through the permissions an app asked for? Let us know by writing us at Cyberguy.com/Contact.

For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.

Ask Kurt a question or let us know what stories you’d like us to cover.

Follow Kurt on his social channels:

Answers to the most asked CyberGuy questions:

New from Kurt:

Copyright 2025 CyberGuy.com. All rights reserved.

In 2022, Elon Musk acquired Twitter and made a series of changes to the platform, including changing its name to X and introducing Community Notes, which is a feature that allows users to add context or fact-check potentially misleading posts.

This approach differs from Meta’s model, which relies on third-party, independent fact-checking organizations to flag misleading posts on Instagram, Facebook and Threads (its rival to X). 

However, CEO Mark Zuckerberg recently announced that Meta will stop working with these organizations and instead implement an X-like Community Notes feature. Zuckerberg also revealed a series of other major changes to the company’s moderation policies and practices, aimed at offering people more freedom of expression.

I’M GIVING AWAY THE LATEST & GREATEST AIRPODS PRO 2

Community Notes coming to Meta platforms

Zuckerberg announced Tuesday that the social media company would stop working with third-party fact-checking organizations. In a video posted on Instagram and Facebook, Zuckerberg said the company’s content moderation approach resulted too often in “censorship.”

“After Trump first got elected in 2016, the legacy media wrote nonstop about how misinformation was a threat to democracy. We tried in good faith to address those concerns without becoming the arbiters of truth,” Zuckerberg said. “But the fact-checkers have just been too politically biased and have destroyed more trust than they’ve created, especially in the U.S.”

Zuckerberg said that Meta will end its fact-checking program with trusted partners and replace it with a community-driven system similar to X’s Community Notes.

For the unaware, Community Notes on X allows users to collaboratively add context or fact-check potentially misleading posts. When a tweet is flagged for misinformation or lack of context, users can submit notes that provide additional information or correct inaccuracies. 

These notes are then reviewed by other users, who can upvote or downvote the contributions based on their helpfulness and accuracy. If a note receives enough support, it becomes visible beneath the original tweet, offering a balanced view and helping to inform others.

HOW TO PROTECT YOURSELF FROM SOCIAL MEDIA SCAMMERS

Meta’s changes spark backlash from fact-checking community

Independent fact-checkers, however, aren’t happy with the change.

“Fact-checking journalism has never censored or removed posts; it’s added information and context to controversial claims, and it’s debunked hoax content and conspiracy theories. The fact-checkers used by Meta follow a code of principles requiring nonpartisanship and transparency,” said Angie Drobnic Holan, director of the International Fact-Checking Network.

WHAT IS ARTIFICIAL INTELLIGENCE (AI)?

Social media apps on an iPhone’s home screen (Kurt “CyberGuy” Knutsson)

HOW TO PROTECT YOUR FACEBOOK ACCOUNT FROM HACKERS

Meta is also reducing censorship

Zuckerberg also revealed plans to overhaul Meta’s recommendation system, which determines the content shown to users. For years, the company has restricted political content, citing user feedback and concerns about the impact of social media on beliefs.

“We built a lot of complex systems to moderate content, but the problem with complex systems is they make mistakes,” Zuckerberg said. “Even if they accidentally censor just 1% of posts, that’s millions of people, and we’ve reached a point where it’s just too many mistakes and too much censorship.”

He added that Meta would eliminate some content policies on controversial issues, including immigration and gender, and refocus its automated moderation on what he described as high-severity violations. The company will now take a more personalized approach to political content so that people who want to see more of it in their feeds can see it.

In addition, Facebook will relocate its trust and safety and content moderation teams from California to Texas. Zuckerberg also said Meta would collaborate with the incoming Trump administration to promote free speech globally, though he did not provide specific details.

Facebook app on an iPhone (Kurt “CyberGuy” Knutsson)

FACEBOOK AND INSTAGRAM ARE USING YOUR DATA TO TRAIN AI: LEARN HOW TO PROTECT YOURSELF

Kurt’s key takeaway

Meta’s platforms, like Facebook and Instagram, have been more tightly moderated compared to platforms like X, which has meant less freedom of expression for users. The changes Zuckerberg announced on Tuesday aim to relax those rules, letting people share their thoughts more freely. This could lead to more offensive content, but that’s the trade-off for more freedom. The introduction of Community Notes is a good change, too, as it gives users more control instead of leaving it to a small group of people who might be biased toward a certain political party or issue.

What do you think about the changes Zuckerberg is making to Meta’s content moderation? Let us know by writing us at Cyberguy.com/Contact.

For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.

Ask Kurt a question or let us know what stories you’d like us to cover.

Follow Kurt on his social channels:

Answers to the most asked CyberGuy questions:

New from Kurt:

Copyright 2025 CyberGuy.com. All rights reserved.