A new Android banking Trojan is targeting 217 banking and cryptocurrency apps while giving attackers greater control over infected devices.
The malware is called Rokarolla and is distributed through malicious websites that disguise themselves as popular apps such as TikTok and Google Chrome, reports Zimperium is a mobile cybersecurity firm.
Zimperium says that Rokarolla is designed to exploit crypto applications by using fake screens that appear on top of legitimate applications.
Malware can steal device unlock information, including PINs, patterns and passwords, by displaying a fake Android lock screen. Zimperium says the information entered on the fake screen is sent to a location controlled by the attackers.
The report states that Rokarolla can also steal banking information and cryptocurrency when victims open targeted financial apps. Once the malware detects a target application, it can display a fake page to collect credentials or credit card information.
Zimperium says the malware contains 137 commands that allow attackers to control infected devices, collect SMS messages, steal contact lists, record user data and monitor screen content.
Rokarolla can also block incoming calls, turn off silent messages and disable Google Play Protect, according to the report.
The cybersecurity company said the malware can enable SMS, sending text messages on behalf of victims and prevent users from receiving fraudulent information from banks.
Zimperium says Rokarolla monitors more than 200 currencies, cryptocurrencies and social media, including 217 different cryptocurrency and banking apps.
The company said the malware’s features were designed to facilitate financial fraud and prevent victims from interfering with malicious activity on infected devices.
letter)
 
Disclaimer: The views expressed in Daily Hodl are not financial advice. Investors should do their due diligence before making any risky investments in Bitcoin, cryptocurrency or digital assets. Please note that your transfers and transactions are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend buying or selling any assets including cryptocurrencies, nor is The Daily Hodl a financial advisor. Please note that The Daily Hodl participates in affiliate marketing.
Image Created: Midjourney
