Cybersecurity researchers have uncovered RedHook, a sophisticated Android banking Trojan targeting Vietnamese users through phishing sites and malicious APKs. This malware combines phishing, keylogging, and remote access features to evade detection and steal sensitive data. #RedHook #VietnameseBankingTrojan
Keypoints
- RedHook is an Android banking Trojan that primarily targets Vietnamese mobile users.
- The malware is distributed via phishing sites impersonating trusted financial and government agencies.
- RedHook uses overlay phishing pages, keylogging, and WebSocket streaming to capture data in real-time.
- It maintains persistent communication with its C2 server, supporting over 30 remote commands.
- Indicators suggest a Chinese-speaking threat actor evolved from previous fraud campaigns to deploy this malware.
Read More: https://thecyberexpress.com/redhook-android-banking-trojan-exploiting/