Google, Facebook, Twitter, WhatsApp and 222 other Android apps were targeted by a new Trojan malware found stealing user credentials


Another Trojan malware has been found that can steal your credentials from 226 Android apps in various countries that includes India.

Let’s know more about the Trojan malware!

Cyber security researchers have discovered a new Trojan malware named Alien that can steal credentials from 226 Android apps in various nations that include India.

The android apps that can be targetted by the Trojan malware, Alein.

Alien targeted various apps that include prominent apps like Gmail, Twitter, Facebook, Telegram, WhatsApp, and Snapchat.

Alien is mostly targetting banking apps, but Alien can also present phishing pages for social, immediate messaging, and cryptocurrency apps, revealed by ZDNet. 

What is Alien malware?

The Alien malware is a rented banking Trojan that gives more than the average abilities of Android banking Trojans.

According to security researchers from ThreatFabric, it has standard capabilities that include overlay attacks, harvest the contact list, and control and steal SMS messages.

The Trojan malware, Alein can leverage its keylogger for any practice and, therefore, expand the attack reach further than its target list. 

“It also allows the probability to install, start and uninstall applications from the infected device”.

Most importantly, it gives a notifications sniffer, enabling it to make the content of all notifications on the infected device, and a RAT (Remote Access Trojan) feature (by abusing the TeamViewer application), determining that the threat characters can work the scam from the victim’s device.

According to cyber security researchers, it is not a fresh bit of code but based on the source code of a competing malware named Cerberus, that was an active malware-as-a-service (MaaS) in the past year. 

“We also mark an engagement from actors in record-keeping and stealing more information enclosing the victim. How that data will be handled or monetized can differ, it is just a concern of time before actors discover out about the significance of such data,” the researchers wrote in a blog post.

The last quarter of 2020 will apparently come with some extra modifications to the threat aspect, frequently after the source code of the Cerberus Trojan has been made openly accessible.

In the upcoming months, we can definitively assume some new malware families, based on Cerberus, to develop, the researchers added. 

“We strongly advise all financial institutions to surmise their prevailing and future threat danger and consequently perform the relevant disclosure and check mechanisms”. 

READ  Facebook tests linking your FB account to your news subscriptions


Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.