Security researchers have identified a new Android banking trojan called Sturnus that can intercept decrypted messages from apps like WhatsApp, Telegram, and Signal. The malware is capable of stealing banking credentials, monitoring user activity in real time, and executing transactions, indicating a potential for broader cyber threats in Europe. #Sturnus #ThreatFabric
Keypoints
- Sturnus can intercept decrypted messages from messaging apps like WhatsApp, Telegram, and Signal.
- The malware can steal banking credentials using fake login screens and grant attackers remote control of infected devices.
- It monitors real-time activity, including message content and user interactions, and can execute transactions covertly.
- Targeted regions include Southern and Central Europe, with indications of future wider deployment.
- Sturnus is part of a wave of emerging Android banking trojans, such as Herodotus and Crocodilus, with sophisticated evasion and control capabilities.
Read More: https://therecord.media/new-android-malware-captures-private-messages