A new Android banking trojan called Sturnus targets secure messaging apps like WhatsApp, Telegram, and Signal to steal sensitive information. It can conduct overlay attacks, log keystrokes, and remotely control infected devices, posing a significant threat to financial institutions and users in Europe. #Sturnus #AndroidTrojan #ThreatFabric #FintechThreats
Keypoints
- Sturnus malware is designed to target communications from popular messaging apps on Android devices.
- It can display fake login screens to steal banking credentials through overlay attacks.
- The malware can log keystrokes and remotely control infected devices, gaining administrator privileges.
- Sturnus monitors app activities and tricks secure messaging apps into revealing decrypted messages.
- It bypasses end-to-end encryption by accessing messages after they are decrypted on the device.
Read More: https://www.securityweek.com/new-sturnus-banking-trojan-targets-whatsapp-telegram-signal-messages/