“Xenomorph” is one of the most dangerous trojans in recent times that is capable of stealing your bank account credentials.
Cybersecurity Experts from threat tissue after I found that out a new threat targeting Android userswhat has been achieved Skip the line in Google plus Play Store about Trojan.
The threat in question, christened as xenomorphit is its purpose stolen the access data to the users’ bank positions. It is also known that the Trojan would be able to do this Obtain access data to cryptocurrency wallets or dirección de correo electrónico accounts.
After the first analysis, conclusions are drawn The threat primarily targets users in Spain, Portugal, Italy and Belgium.
Spain, the main objetivo of the “Xenomorph” software malicioso.
Researchers have found that the Trojan it targeted 56 different European banks. The application would be infected with a Trojan installed more than 50000 times.
This application was found on Google plus Play under the name “Quick Cleaner”and related as a Digital Junk “Cleaner” promised to speed up devices. And while the aplicación appeared to be doing its job, signs were found in its code that pointed to a threat that had already blocked Android users in the past.
Fast Cleaner is the aplicación used to hide the Xenomorph Trojan
Although the techniques used by software malicioso creators are slightly different from the usual ones, it has already been established that if the infected aplicación has been installed on the devicea overlay programa layer on the screen impersonating another aplicación. So the usuario was asked entrar their detailslater collected by the software malicioso.
After launching the software malicioso, “Xenomorph” is able to monitor usuario activities. In this way, when one of the applications within its object list is opened – mainly the bank unit applications – the screen overlay is inserted received access datawithout the usuario being aware of it.
More than 28 banking applications from your objetivo list, Spain seems to be the main objetivo of this threat. Such entities cánido be found among the software malicioso’s objetivo applications CaixaBank, BBVA, ING, Binance, Bitfinex, Coinbase, TransferWise, WiZink, Cajasur, Bankinter, Santander, Bankia, Ibercaja, Openbank or Pibankamong other.
If at some point you think that the download Aplicación infected with software maliciosoit is important, that Completely uninstall aplicación and possibly to Convert your access accounts to en línea banking. It cánido also be useful to completely format the phone to remove all traces of “Xenomorph”.