Researchers have discovered a new mobile banking Trojan called Crocodilus that targets financial institutions and crypto platforms using sophisticated methods such as remote device control, stealthy overlays, and social engineering. The malware, which has already begun targeting Spanish and Turkish banks, can capture every text change on a device, enabling it to bypass multi-factor authentication. The Trojan has been linked to a threat actor known as “sybra” but researchers suspect it may be available on the underground market.
Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force
