Xenomorph, a dangerous malware that made a lot of noise last year, is back in France. The new version can target French banking institutions to steal all your money.
If you follow malware news, you might remember Xenomorph, designed by a group of hackers known as Hadoken. This is the same group that was also behind a fake app that was supposed to boost your battery, but actually hid a terrible Trojan horse.
Previously, Xenomorph was able to bypass the limitations of app accessibility options to install malware on the victim’s smartphone. Now, thanks to a new V3 update, the malware is capable of much worse, as it now offers new features that make it possible carry out financial fraud in a transparent manner.
Xenomorph becomes even more dangerous to steal all your money
” This new version of the malware adds many capabilities to an already versatile Android Banker, including the introduction of a very comprehensive execution engine powered by Accessibility Services, which is used by actors to implement a framework TTY [Automated Transfer Systems] completely “, we can read in the ThreatFabric technical communication.
So the new version of Xenomorph can focuses on more than 400 banking and financial institutions, including several cryptocurrency wallets. It sometimes happens that France is not directly affected by this type of malware, but unfortunately that is not the case here.
In fact, the banks BNP Paribas, Crédit du Nord, La Banque Postale, Crédit Agricole, LCL and Société Générale are among the French players targeted by this threat. It therefore becomes urgent to pay attention to the applications that you can install on your smartphone, at the risk of having your bank details stolen.
Note that the malware also targets certain cryptocurrency wallets, including Binance, Coinbase, Gemini, KuCoin or even BitPay. ” Thanks to its new functionalities, Xenomorph is now able to automate the entire banking fraud chain, from infecting the user’s device to stealing money, making it one of the most sophisticated and dangerous Trojans circulating on Android. “warns Threat Fabric.