Security News > 2022 > February > New Xenomorph Android malware targets customers of 56 banks
A new malware called Xenomorph distributed through Google Play Store has infected more than 50,000 Android devices to steal banking information.
Researchers at fraud and cybercrime prevention company ThreatFabric analyzing Xenomorph found code that is similar to Alien banking trojan.
Banking trojans like Xenomorph aim to steal sensitive financial information, take over accounts, perform unauthorized transactions, and operators then sell the stolen data to interested buyers.
The Xenomorph malware entered the Google Play Store via generic performance-boosting applications such as the "Fast Cleaner", which counts 50,000 installations.
It still represents a significant threat as it can fulfill its info-stealing purpose and it targets no less than 56 different European banks.
To steer clear from Android malware that lurks in the Play Store, users should avoid installing apps that carry promises that are too good to be true.
News URL
Related news
- Week in review: VMware ESXi zero-day exploited, SMS Stealer malware targeting Android users (source)
- New LianSpy malware hides by blocking Android security feature (source)
- Android malware uses NFC to steal money at ATMs (source)
- New NGate Android malware uses NFC chip to steal credit card data (source)
- Cybercriminals Deploy New Malware to Steal Data via Android’s Near Field Communication (NFC) (source)
- New Android Malware NGate Steals NFC Data to Clone Contactless Payment Cards (source)
- SpyAgent Android malware steals your crypto recovery phrases from images (source)
- New Android SpyAgent Malware Uses OCR to Steal Crypto Wallet Recovery Keys (source)
- Beware: New Vo1d Malware Infects 1.3 Million Android-based TV Boxes Worldwide (source)
- New Android Malware 'Ajina.Banker' Steals Financial Data and Bypasses 2FA via Telegram (source)