This Android banking trojan is spreading by copying the tactics of another malware menace

LASER_oneXM

Level 37
Thread author
Verified
Top poster
Well-known
Feb 4, 2016
2,534
Medusa Android malware looks towards FluBot for inspiration - and it could result in what researchers describe as a "critical" threat.

Two powerful forms of Android malware are being spread in attacks which share the same infection tactics and delivery infrastructure. Detailed by cybersecurity researchers at ThreatFabric, the campaigns involves FluBot malware – also known as Cabassous – and another Android banking trojan, Medusa.

FluBot is one of the most notorious forms of Android malware, which steals passwords, bank details and other sensitive information from infected smartphones.It also gains access to contact books in order to spread itself to other victims via malicious SMS messages, which are often designed to look like an alert about a missed package delivery. FluBot is so prolific that national cybersecurity agencies have issued warnings about it.