New Banking Trojan Compromises 13,000 Android Users, Security Experts Warn
19.10.2024 21:00 1 min. read Kosta Gushterov
Security specialists have discovered a new variant of the TrickMo banking Trojan, which has compromised approximately 13,000 Android devices.
Zimperium, building on earlier research by Cleafy, indicates that the malware spreads primarily through phishing schemes and social engineering tactics, often disguising itself as genuine banking or utility applications.
This updated version of TrickMo poses a significant threat as it can hide its code from detection and capture device unlock patterns or PINs. Additionally, it has the ability to intercept login information, one-time passwords, access private files, grant permissions, record screens, and even remotely control devices.
These features contribute to its potential for serious threats, including identity theft.
Experts note that while TrickMo continues to function as a typical Android banking Trojan, the data it gathers could enable attackers to exploit victims on multiple fronts. This malware is linked to the TrickBot group, a criminal syndicate believed to operate out of Russia.
Zimperium’s research highlights that over 13,000 IP addresses have been affected, with victims predominantly found in Canada, the UAE, Turkey, and Germany, demonstrating the extensive impact of this malware campaign.
-
1
As Court Battles Intensify, Crypto Stands Behind Tornado Cash Devs
14.06.2025 17:00 2 min. read -
2
Paradigm Joins Legal Fight to Defend Tornado Cash Co-Founder
18.06.2025 21:00 1 min. read -
3
Pennsylvania Man Sentenced to 8 Years for $40M Crypto Ponzi Scheme
28.06.2025 11:30 1 min. read -
4
Crypto Theft Surges to $2.1B in 2025: State Actors Lead Historic Wave of Attacks
27.06.2025 16:30 2 min. read -
5
Solana PumpFun Bot Turns Out to Be Malware in Disguise
04.07.2025 9:00 2 min. read
Hackers Steal $140 Million from Brazilian Central Bank, Launder Funds Through Crypto
A sophisticated cyberattack targeting Brazil’s central bank reserve accounts has resulted in the theft of over $140 million (R$800 million), much of which was swiftly funneled through cryptocurrency channels.
Solana PumpFun Bot Turns Out to Be Malware in Disguise
A malicious open-source project on GitHub disguised as a Solana trading bot has compromised user wallets, according to a July 2, 2025, report by cybersecurity firm SlowMist.
Pennsylvania Man Sentenced to 8 Years for $40M Crypto Ponzi Scheme
The U.S. Department of Justice has sentenced Dwayne Golden, 57, of Pennsylvania to 97 months in prison for orchestrating a fraudulent crypto investment scheme that stole over $40 million from investors.
Crypto Theft Surges to $2.1B in 2025: State Actors Lead Historic Wave of Attacks
The first half of 2025 has become the most damaging six-month period in crypto history, with over $2.1 billion stolen across 75+ separate incidents, according to new data.
-
1
As Court Battles Intensify, Crypto Stands Behind Tornado Cash Devs
14.06.2025 17:00 2 min. read -
2
Paradigm Joins Legal Fight to Defend Tornado Cash Co-Founder
18.06.2025 21:00 1 min. read -
3
Pennsylvania Man Sentenced to 8 Years for $40M Crypto Ponzi Scheme
28.06.2025 11:30 1 min. read -
4
Crypto Theft Surges to $2.1B in 2025: State Actors Lead Historic Wave of Attacks
27.06.2025 16:30 2 min. read -
5
Solana PumpFun Bot Turns Out to Be Malware in Disguise
04.07.2025 9:00 2 min. read