Cybersecurity researchers have uncovered a new Android banking trojan named Sturnus that can steal credentials and take full control of devices, bypassing encrypted messaging. This malware targets financial institutions in Europe, uses sophisticated overlay attacks, and maintains strong protection against removal. #Sturnus #AndroidTrojan #FinancialFraud
Keypoints
- Sturnus is a new Android banking Trojan capable of credential theft and device takeover.
- The malware can bypass encrypted messaging by capturing decrypted content from the device screen.
- It conducts overlay attacks by showing fake login screens on banking apps to steal credentials.
- Sturnus uses a mixed communication pattern with plaintext, AES, and RSA encryption.
- The malware employs advanced techniques to prevent uninstallation and adapt to detection efforts.
Read More: https://thehackernews.com/2025/11/new-sturnus-android-trojan-quietly.html