This article has been indexed from Softpedia News / Security
Threat Fabric uncovered a new Android-based Remote Access Trojan (RAT) capable of recording smartphones’ screens and stealing personal information, including financial data, in order to lay the groundwork for device fraud.
Vultur is the first Android banking Trojan capable of using keylogging and screen recording to automate and scale login credentials harvesting. In comparison to other Android banking Trojans, the threat actors skipped the more popular HTML overlay tactic and instead simply recorded the screen.
Until recently, financial malware relied primarily on overlay attacks. Banker.BR, Vizom, and Grandoreiro, for instance, operate by first creating a fake version of the bank’s login screen and then overlaying it on top of the original app, scamming its victims into entering their credentials and other sensitive information.
Vultur takes advantage of accessibility permissions…
Read the original article: New Android Malware Spying its Victims and Stealing Passwords via VNC