Cybersecurity company Threat Fabric announces that it has spotted a new Remote Access Trojan (RAT) virus.
“The last quarter of 2020 will likely see further changes in the cyber threat landscape, especially since the source code for the Cerberus Trojan was released. In the coming months, we can expect new families of Cerberus-based malware to emerge "- Threat Fabric Report
Alien malware, in addition to "classic" theft of text messages and a device's contact list, has the ability to install, start, and remove applications from the infected device.
Several applications related to the cryptos concerned
According to Threat Fabric experts, at least 226 applications are targeted by the Alien infection. The majority of the applications targeted would be those of banking services.
But among them, there are also crypto wallet applications, in particular those of Coinbase, Blockchain.com or Luno.
Where it all gets even more concerning is that Alien inherited the authentication code theft functionality from Cerberus version 2 (C2). This allows you to retrieve codes from two-factor authentication (2FA) applications, such as Google Authenticator.
Mistrust is therefore more than ever in order when you pick up an application, including from the Google Play Store. Make sure to collect it directly from the application publisher, to avoid possible infected copies.
