Nasty malware can steal login credentials for 400 banks

March 13, 2023

By Kim Komando

Malware can be used for many nefarious things. The scariest way it’s used is to steal banking information. Now, hackers are going straight for the financial reward, sidestepping the usual methods for data extraction.

Read on to see how Xenomorph malware goes after your banking details and what you can do about it.

Malware variant used to steal banking credentials

Xenomorph malware has been around for a few years, with hackers spending most of 2022 fine-tuning the code. Mainly used on small-scale targets, the malware failed to break into the virus market like others.

Cybersecurity researchers now believe that the initial version was only a test run, and the creators are ramping up its capabilities to be more devastating than before. ThreatFabric calls the latest version Xenomorph C and explains that the Android-based malware is a powerful banking Trojan.

“With these new features, Xenomorph can completely automate the entire fraud chain, from infection to funds exfiltration, making it one of the most advanced and dangerous Android malware Trojans in circulation,” it explains in a blog post.

In addition, this malware is concerning because it targets over 400 financial institutions and cryptocurrency wallets. Xenomorph C could become one of the most dangerous malware variants around.

Steps to keep malware from infecting your devices

One way to protect yourself from malware is to only download applications from the official app stores, such as the Google Play Store or Apple’s App Store. Third-party libraries don’t have strong security steps as official app stores do.

Here are more ways to stay protected from malware:

Keep reading

Keep an eye out – Malware-infected Word docs spreading

Use this easy, free check to see if a site or file contains malware

https://www.komando.com/tips/cybersecurity/malware-steals-bank-credentials/