The Crocodilus malware, first identified by fraud prevention firm Threat Fabric earlier this year, is a device takeover Trojan initially deployed to trick users into giving up crypto wallet seed phrases under the guise of needing to back up their keys. Once downloaded—such as via a malicious ad, smishing campaign, or third-party app—the malware was able to evade Play Protect on Android 13 (and later) and gain access to Accessibility Service, ultimately logging and harvesting typed account credentials. As a result, threat actors could gain control of and empty victims' crypto wallets.
What Android users need to do
At first, Crocodilus campaigns were limited to a few countries, but the malware has now spread around the world, including to the U.S. To avoid infecting your Android device, stick to Google Play for downloading trusted apps and software, and keep Play Protect active to catch as many threats as possible.
Never download attachments or click links in unsolicited emails or texts, navigate to websites directly instead. Call a company via their public contact number rather that trusting a number that calls you if you're not sure about the legitimacy of a message. Don't react to anything that seems urgent or provokes strong emotions. Also avoid clicking ads, downloading software, or following instructions from social media, which can also be vectors for malware.
Read More Details
Finally We wish PressBee provided you with enough information of ( This Malware Adds a ‘Trusted’ Contact to Your Android Phone )
Also on site :
- Amazon Is Selling a 'Lovely' $70 Patio Umbrella for Only $30, and Shoppers Love That It’s 'Weather-Resistant'
- Israel ‘Activated Clans’ to Fight Hamas in Gaza, Netanyahu Says
- Dakota Johnson Says ‘Madame Web’ Flop ‘Wasn’t My Fault’: Decisions Are Made in Hollywood by ‘People Who Don’t Have a Creative Bone in Their Body’