Xenomorph Android Banking Malware

by Artie Kaye

While the malware has been around for over a year, a new campaign has been found recently.  Using a fake Chrome update message as an install vector, it will take control of Android devices, apply overlays to hide what it is doing, access any personal information on the device, and steal money from the phone’s owner.  The updated version has increased the number of financial institutions it can target.  For an in-depth look into this, please read Threat Fabric‘s analysis linked below.

If you believe that fraudulent activity has occurred through your device, reach out to your bank or other financial institution as soon as possible.

Third-Party references:

Click the links below to learn more details. (Opens in a new tab/window.)