Anubis malware resurfaces targeting crypto wallets and banking apps

So far, 394 malicious apps have been identified that are spreading Anubis malware to steal financial and personal data from unsuspecting Android users.

Security researchers at Lookout security firm have identified a notorious new mobile malware campaign disguised as an official Orange Telecom account management app from Orange S.A, a leading telecommunication service provider in France. Reportedly, the malicious app delivers a modified variant of Anubis banking malware.

About Anubis Malware

Anubis was first identified in 2016 but now the malware has resurfaced and targeting clients of around 400 financial institutions, virtual payment platforms, and cryptocurrency wallets. These include Chase, Bank of America, Wells Fargo, and Capital One customers, etc.

Anubis malware resurfaces targeting crypto wallets and banking apps

Anubis malware sold on Russian cybercrime forum in 2016

Anubis is a dangerous banking trojan. It can collect sensitive financial data, steal victims’ SMS messages, exfiltrate files and log keys, extract GPS data, monitor screen display, and exploit other accessibility services enabled on the device.

Previously, the Anubis was found stealing photos, videos, and other sensitive content from Android devices. The same malware was also identified in COVID-19 related scams when crooks pushed fake govt-issued

Read More: