Security researchers say a newly discovered piece of malicious software designed to drain bank accounts has hit 13,000 people.
Experts at the cybersecurity firm Zimperium say a new variant of a trojan called TrickMo is infecting Android devices through phishing and social engineering attacks, often disguising itself as legitimate-looking banking and utility apps.
Zimperium, which is building on primary findings by the security firm Cleafy, says this new variant can obfuscate its code to evade detection and can also capture a device’s unlock pattern or pin, making it especially dangerous.
It can also intercept login credentials, one-time passwords, access photos and documents, automatically grant permissions, record screens and control nearby devices remotely.
Researchers say the trojan’s new abilities could open the door to identity theft and other attacks.
“The new findings underscore an enhancement in the Threat Actor’s capabilities.
Although TrickMo retains the typical functionalities of an Android banking Trojan, the data collected from infected devices could enable the attacker to undertake additional actions, compromising the victim on multiple levels.”
TrickMo is associated with the TrickBot group, a notorious Russia-linked criminal organization.
Researchers say they’ve identified over 13,000 victims’ IP addresses, revealing a wide reach of the new malware with primary targets in Canada, United Arab Emirates, Turkey and Germany.
Don’t Miss a Beat – Subscribe to get email alerts delivered directly to your inbox
Check Price Action
Follow us on X, Facebook and Telegram
Surf The Daily Hodl Mix
 
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.
Generated Image: Midjourney
Source link
Mark Emem
https://dailyhodl.com/2024/10/19/13000-people-hacked-as-criminal-organization-cracks-smartphones-drains-bank-accounts-steals-passwords-audio-recordings-photos-text-messages-and-more-report/
2024-10-19 14:30:36