Cybersecurity researchers have discovered a new Android banking malware named Crocodilus, targeting primarily users in Spain and Turkey. The malware, designed for device takeover and fraudulent transactions, demonstrates advanced techniques like remote control and data harvesting. It disguises as Google Chrome, bypasses Android’s restrictions, targets financial apps and crypto wallets. Its features include launching specified apps, capturing screen contents, and concealing its actions via a black screen overlay and muting sounds.
New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload
Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs
