Saturday, July 31, 2021 15:00 PM (GMT+7)
According to security firm ThreatFabric, the Vultur malware is designed to record all user actions, stealing banking and cryptographic credentials.
Accordingly, the Vultur malware used the VNC feature to record the screen, operations and display everything on the attacker’s server. When users accidentally enter account information, crooks will immediately get the data and infiltrate the account, withdraw money…
Vultur can record the user’s screen and actions. Photo: Techwar
Vultur’s method of screen recording, unlike previous banking malware, relies on HTML overlays. Instead, Vultur abuses accessibility services on Android to get the necessary permissions and start collecting information.
In the ThreatFabric report, Vultur is targeting infections for Android apps on Google Play. Italy, Spain and Australia are the countries with many institutions and banks affected by Vultur.
“With Vultur, attacks can be scaled up and automated, with every action being scripted,” the ThreatFabric researchers said.
If a user downloads and opens one of the apps that Vulture is targeting, the malware will start recording the screen.
To be on the safe side, you should only download trusted apps, not install software from third-party stores.
Online communication has many positives and risks, especially for girls.