Xenomorph, a dangerous malware that made a lot of noise last year, is back in France. Its new version can target French banking institutions to steal all your money.
If you follow malware news, you might remember Xenomorph, designed by a group of hackers known as Hadoken. This is the same group that was also behind a fake app that was supposed to boost your battery, but was actually hiding a terrible Trojan horse.
Previously, Xenomorph was able to circumvent the limitations of app accessibility options to install malware on the victim’s smartphone. Now, due to a new V3 update, the malware is capable of much worse, as it now offers new features that allow it to carry out financial fraud in a transparent manner.
Xenomorph becomes even more dangerous to steal all your money
” This new version of the malware adds many capabilities to an already feature-rich Android Banker, including the introduction of a very comprehensive execution engine powered by Accessibility Services, which is used by actors to implement a framework TTY [Automated Transfer Systems] complete “, can we read in the technical notice of ThreatFabric.
The new version of Xenomorph can thus target more than 400 banking and financial institutions, including several cryptocurrency wallets. It sometimes happens that France is not directly affected by this type of malware, but this is unfortunately not the case here.
In effect, the banks BNP Paribas, Crédit du Nord, La Banque Postale, Crédit Agricole, LCL and Société Générale are among the French players targeted by this threat. It is therefore becoming urgent to pay attention to the applications that you can install on your smartphone, at the risk of seeing your bank details being stolen.
Note that the malware also targets certain cryptocurrency wallets, including Binance, Coinbase, Gemini, KuCoin or even BitPay. ” Thanks to its new functionalities, Xenomorph is now able to automate the entire bank fraud chain, from the infection of the user’s device to the exfiltration of funds, making it one of the Most advanced and dangerous Trojans circulating on Android “, warns Threat Fabric.