Xenomorph: What to know about this Android banking trojan

Cyber Security

Xenomorph pilfers victims’ login credentials for banking, payment, social media, cryptocurrency and other apps with valuable data

More than 50,000 Android devices were compromised with an Android banking trojan called Xenomorph earlier this year. First reported by ThreatFabric, Xenomorph posed as a system-optimizing app called “Fast Cleaner”. Disguising malicious software as device optimizers, battery- or performance-enhancing and other utility tools is a rather common tactic for dangerous Android malware.

Xenomorph is after people’s login credentials for banking, payment, social media, cryptocurrency and other apps with valuable personal information. More than 50 apps, including PayPal, Coinbase and Binance, were abused by the banking trojan, which can also intercept SMS messages and notifications in order to bypass two-factor authentication (2FA).

In this video, ESET Senior Malware Researcher Lukas Stefanko walks you through the functionality of the malware from the victim’s point of view.

If you’re worried that your own phone may have been compromised by malicious software or want to learn how to keep malware off your phone, our article about common signs your phone has been hacked will have you covered.

Stay safe!

Products You May Like

Articles You May Like

U.S. Citizen Sentenced for Spying on Behalf of China’s Intelligence Agency
Protecting Tomorrow’s World: Shaping the Cyber-Physical Future
INC Ransom Claims Cyber-Attack on UK Children’s Hospital
UK Justice System Failing Cybercrime Victims, Cyber Helpline Finds
Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks

Leave a Reply

Your email address will not be published. Required fields are marked *