New Android Malware Crocodilus Uses Social Tricks To Steal Crypto Keys

A newly discovered Android malware called Crocodilus is raising concerns about its ability to steal sensitive cryptocurrency wallet credentials through social engineering. Although recently observed targeting users in Spain and Turkey, the malware’s advanced capabilities suggest a broader rollout could follow.

Crocodilus is distributed through a proprietary dropper that bypasses Android 13 and later security protections, evading detection from Google’s Play Protect system.

Once installed, it requests access to the Accessibility Service, a feature intended to assist users with disabilities, but which also allows malware to monitor screen content,…

Source link