Android banking Trojan called Godfather is targeting users of banking and cryptocurrency apps in 16 countries, including the US, Turkey, Spain, Canada, Germany, France and the UK, researchers from security firm Group-IB report 215 international banks, 94 cryptocurrency wallets and 110 cryptocurrency trading platforms. An interesting feature of Godfather, the researchers report, is that it does not attack Russian-speaking users or the languages of users from countries in the former Soviet Union, which include Azerbaijani, Armenian, Belarusian, Kazakh, Kyrgyz, Moldovan, Uzbek, or Tajik. This may indicate that the author of The Godfather was a Russian-speaking developer. The Godfather is believed to be a new version of the Anubis banking trojan, and the two share a code base. After stealing user credentials and bypassing two-factor authentication, hackers will transfer all funds in victims’ bank accounts and encrypted wallets.
This article is transferred from: https://www.solidot.org/story?sid=73730
This site is only for collection, and the copyright belongs to the original author.