Oddbean

Android Banking Trojan ToxicPanda Targets Europe The Cleafy threat intelligence team recently came across an Android banking trojan that has been observed targeting users in Europe and elsewhere. The cybersecurity firm noticed in late October that there had been a significant increase in what initially appeared to be a campaign involving TgToxic, a China-linked piece of malware that has been used since at least mid-2022 to target Android users in Southeast Asia in an effort to steal cryptocurrency and funds from banking and other finance apps. However, a closer analysis revealed differences in the code and Cleafy started tracking the new malware as ToxicPanda. According to the online fraud management and prevention firm, ToxicPanda has remote access trojan (RAT) capabilities, enabling the attackers to conduct account takeover (ATO) through a technique known as on-device fraud (ODF). See more: https://www.securityweek.com/android-banking-trojan-toxicpanda-targets-europe/ #cybersecurity #android