Currencies32894
Market Cap$ 2.84T+0.80%
24h Spot Volume$ 51.66B-4.28%
DominanceBTC58.92%+0.15%ETH7.75%-0.37%
ETH Gas0.52 Gwei
Cryptorank
MainNewsNew Malware ...

New Malware Targeting Banks and Crypto Platforms With Remote Control and Black Screen Overlays Spreads: Report


Apr, 02, 2025
2 min read
by Conor Devitt
for The Daily Hodl

A new strain of malware has been targeting mobile banking apps and crypto wallets on Android phones.

The fraud prevention firm ThreatFabric says the new malware, which it named “Crocodilus,” is a trojan that utilizes remote control, black screen overlays and advanced data harvesting.

Crocodilus uses dropper malware, which is designed to bypass Android restrictions, to access victims’ systems. After it’s installed, the trojan requests the victim to enable Accessibility Service.

Source: ThreatFabric

The malware then uses overlays, which run deceptive applications on top of victims’ actual apps to trick them into divulging their credentials.

Explains ThreatFabric,

“Initial campaigns observed by our Mobile Threat Intelligence team show targets primarily in Spain and Turkey, along with several cryptocurrency wallets. We expect this scope to broaden globally as the malware evolves.

Another data theft feature of Crocodilus is a keylogger. However, it is more accurate to call it an Accessibility Logger – the malware monitors all Accessibility events and captures all the elements displayed on the screen. In this way, it effectively logs all text changes performed by a victim, making it a keylogger, but the capabilities go beyond just keylogging.”

The fraud prevention firm notes that when victims submit their PINs or passwords to Crocodilus’s crypto wallet overlays, the malware will display a message saying,

“Back up your wallet key in the settings within 12 hours. Otherwise, the app will be reset, and you may lose access to your wallet.”

The message is designed to convince victims to navigate to their seed phrases, which the malware then steals with its accessibility logger.

Follow us on X, Facebook and Telegram

Don't Miss a Beat – Subscribe to get email alerts delivered directly to your inbox

Check Price Action

Surf The Daily Hodl Mix

 
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.

Generated Image: Midjourney

The post New Malware Targeting Banks and Crypto Platforms With Remote Control and Black Screen Overlays Spreads: Report appeared first on The Daily Hodl.

Read the article at The Daily Hodl

Read More

Woman Loses $3,000,000 in Crypto Pig Butchering Scam After Fake Platform Showed 80% Profits: Report

Woman Loses $3,000,000 in Crypto Pig Butchering Scam After Fake Platform Showed 80% Profits: Report

A Maryland woman reportedly lost millions of dollars after falling prey to a growing ...
Apr, 03, 2025
2 min read
by The Daily Hodl
Australian Regulators Say ‘Worrying Trends’ Arising With Crypto ATMs, Put Providers ‘On Notice’

Australian Regulators Say ‘Worrying Trends’ Arising With Crypto ATMs, Put Providers ‘On Notice’

Australian regulators are cracking down on the country’s more than one thousand crypt...
Apr, 01, 2025
2 min read
by The Daily Hodl
MainNewsNew Malware ...

New Malware Targeting Banks and Crypto Platforms With Remote Control and Black Screen Overlays Spreads: Report


Apr, 02, 2025
2 min read
by Conor Devitt
for The Daily Hodl

A new strain of malware has been targeting mobile banking apps and crypto wallets on Android phones.

The fraud prevention firm ThreatFabric says the new malware, which it named “Crocodilus,” is a trojan that utilizes remote control, black screen overlays and advanced data harvesting.

Crocodilus uses dropper malware, which is designed to bypass Android restrictions, to access victims’ systems. After it’s installed, the trojan requests the victim to enable Accessibility Service.

Source: ThreatFabric

The malware then uses overlays, which run deceptive applications on top of victims’ actual apps to trick them into divulging their credentials.

Explains ThreatFabric,

“Initial campaigns observed by our Mobile Threat Intelligence team show targets primarily in Spain and Turkey, along with several cryptocurrency wallets. We expect this scope to broaden globally as the malware evolves.

Another data theft feature of Crocodilus is a keylogger. However, it is more accurate to call it an Accessibility Logger – the malware monitors all Accessibility events and captures all the elements displayed on the screen. In this way, it effectively logs all text changes performed by a victim, making it a keylogger, but the capabilities go beyond just keylogging.”

The fraud prevention firm notes that when victims submit their PINs or passwords to Crocodilus’s crypto wallet overlays, the malware will display a message saying,

“Back up your wallet key in the settings within 12 hours. Otherwise, the app will be reset, and you may lose access to your wallet.”

The message is designed to convince victims to navigate to their seed phrases, which the malware then steals with its accessibility logger.

Follow us on X, Facebook and Telegram

Don't Miss a Beat – Subscribe to get email alerts delivered directly to your inbox

Check Price Action

Surf The Daily Hodl Mix

 
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.

Generated Image: Midjourney

The post New Malware Targeting Banks and Crypto Platforms With Remote Control and Black Screen Overlays Spreads: Report appeared first on The Daily Hodl.

Read the article at The Daily Hodl

Read More

Woman Loses $3,000,000 in Crypto Pig Butchering Scam After Fake Platform Showed 80% Profits: Report

Woman Loses $3,000,000 in Crypto Pig Butchering Scam After Fake Platform Showed 80% Profits: Report

A Maryland woman reportedly lost millions of dollars after falling prey to a growing ...
Apr, 03, 2025
2 min read
by The Daily Hodl
Australian Regulators Say ‘Worrying Trends’ Arising With Crypto ATMs, Put Providers ‘On Notice’

Australian Regulators Say ‘Worrying Trends’ Arising With Crypto ATMs, Put Providers ‘On Notice’

Australian regulators are cracking down on the country’s more than one thousand crypt...
Apr, 01, 2025
2 min read
by The Daily Hodl