Crocodilus is a rapidly evolving Android banking trojan spreading across multiple continents, with new features enabling it to impersonate trusted contacts and bypass detection. Its deployment through malicious ads on social media highlights the threat posed by organized cybercriminal groups targeting financially stable users. #Crocodilus #AndroidTrojan
Keypoints
- The Crocodilus trojan can insert fake contacts to impersonate trusted sources and deceive users.
- Distributed mainly via malicious Facebook ads with a short lifespan but high viewership.
- The malware can bypass Android security restrictions, especially in Android 13 and later.
- It targets users across Europe, South America, Asia, and the US with various impersonation tactics.
- Threat actors behind Crocodilus likely are well-organized and resourceful, though not yet identified.
Read More: https://therecord.media/crocodilus-android-malware-banking-fraud