Free Airdrop Season 7 is LIVE! Answer fun questions or do simple tasks to earn rewards from the $30K BitDegree prize pool. Participate Now ! 🔥
Key Takeaways
Free Airdrop Season 7 is LIVE! Answer fun questions or do simple tasks to earn rewards from the $30K BitDegree prize pool. Participate Now ! 🔥
Crocodilus, a newly discovered Android threat, is putting crypto wallet users at risk by using fake app screens to trick people into giving up their recovery phrases.
According to a March 28 report by Threat Fabric, a cybersecurity company, Crocodilus displays a message that urges users to back up their crypto wallet key within a short time. The message claims that failing to do so could result in losing access to the wallet.
Once the phrase is visible on the screen, the malware records the text through a tool that monitors screen activity. If the attacker gets the full recovery phrase, they can access the wallet and move all its contents.
Did you know?
Subscribe - We publish new crypto explainer videos every week!
What is an NFT? (Explained with Animations)
Although Crocodilus is a new threat, it includes several features found in advanced malware. These include fake overlays, the ability to take control of a device, and tools to collect passwords and other sensitive data.
Threat Fabric says the malware contacts a remote server after installation. It receives commands from this server, including which apps to target and which fake screens to show. The malware stays active in the background and checks what apps are opened. If a crypto or banking app is launched, Crocodilus displays a fake screen over it to gather login details.
It also mutes the sound while operating, so users may not notice anything unusual. With access to passwords and other personal details, attackers can use the phone remotely and make transactions without setting off alarms.
On March 18, cybersecurity firm Malwarebytes discovered that scammers were promoting a counterfeit version of TradingView Premium. What did the fake platform do? Read the full story.
To ensure the highest level of accuracy & most up-to-date information, BitDegree.org is regularly audited & fact-checked by following strict editorial guidelines & review methodology.
Carefully selected industry experts contribute their real-life experience & expertise to BitDegree's content. Our extensive Web3 Expert Network is compiled of professionals from leading companies, research organizations and academia.