Jump to content

Cerberus (Android)

Edit links
From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by MoHaG (talk | contribs) at 16:45, 28 April 2020 (Creation of initial stub.). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

Cerberus is a trojan horse targeting mobile banking credentials. It is capable of logging all keystrokes (including passwords) and stealing 2FA tokens from Google Authenticator and SMS messages. It also allows remote control over the device using TeamViewer. [1]. It is sold as Malware as a service on underground forums. [2]

History

  • It was initially spotted in June 2019. [3]
  • It was spotted targetting Spanish and Latin American targets in September 2019.[4]
  • Attacks capabile of stealing Google Authenticator and SMS 2FA tokens was spotted in February 2020. [3]
  • In April 2020, variants has been spotted posing as COVID-19-related apps.[5]

References

  1. ^ Doffman, Zak (2020-04-09). "New Android Coronavirus Malware Threat Exposed: Here's What You Must Not Do". Forbes. Retrieved 2020-04-28.
  2. ^ "Malicious coronavirus-themed apps target Android devices". TechRepublic. 2020-03-18. Retrieved 2020-04-28.
  3. ^ a b Cimpanu, Catalin (2020-02-27). "Android malware can steal Google Authenticator 2FA codes". ZDNet. Retrieved 2020-04-28.
  4. ^ "Cerberus Android Malware Gains Ability to Steal 2FA Tokens, Screen Lock Credentials". Security Intelligence. 2020-03-02. Retrieved 2020-04-28.
  5. ^ "Coronavirus stimulus scams are here. How to identify these new online and text attacks". CNET. Retrieved 28 April 2020.
Retrieved from "https://en.wikipedia.org/enwiki/w/index.php?title=Cerberus_(Android)&oldid=953703467"