A analysis group has detected a brand new sort of Trojan virus, which has affected greater than 400 apps on the Android Play Retailer, together with 95 bitcoin (BTC) and crypto-currency wallets.
In accordance with cybersecurity agency Group-IB, in its analysis, it identified that this Trojan has been operational since March 2022, when the primary vulnerabilities have been detected. Nevertheless, to today, many customers can nonetheless be contaminated.
The Trojan, nicknamed Godfather, is primarily supposed to assault banking purposes. Its capabilities embrace producing notifications that redirect to fraudulent web sites, the place the person is requested to enter private particulars, that are captured by the criminals’ servers.
Though it focuses on banking purposes, Group-IB decided that 94 crypto-currency wallets have been affected in 2022 by the Trojan, though it didn’t specify which of them.
The vulnerability was created as a result of the virus has the power to entry providers in purposes. Though the Trojan just isn’t in a position to crack the cryptography with which non-public keys are saved, by revealing the restoration seed, it could take a screenshot that’s shared with hackers, the analysis group decided.
Godfather relies on an older Trojan often known as Anubis, which Group-IB stated had been patched from newer variations of Android, and thus would have misplaced its effectiveness. Nevertheless, updates to the Godfather’s code have allowed it to outlive.
Group-IB has drawn consideration to 2 purposes, each of which function automobiles for the Trojan. Certainly one of them is Forex Convert Plusan utility for changing currencies. The opposite is a model of Google Shield, which emulates its antivirus perform, however finally ends up putting in Godfather on cell gadgets. Within the latter case, these are purposes put in from third-party sources, equivalent to pirate web sites.
Comparable viruses have hit crypto-currency customers up to now. Trojan is a class given to viruses that infect digital gadgets by means of different seemingly innocent purposes. They’re an analogy of the Computer virus in Homer’s Odyssey.