Cerberus (Android)

From HandWiki
Short description: Android-platform based trojan


Cerberus is a trojan horse targeting Android mobile phone banking credentials.

History

It was initially spotted in June 2019.[1] It was spotted targeting Spanish and Latin American targets in September 2019.[2] Its attacks are capable of stealing Google Authenticator and SMS 2FA tokens, behavior that was spotted in February 2020.[1] In April 2020, variants has been spotted posing as COVID-19-related apps.[3]

Cerebus is capable of logging all keystrokes (including passwords) and stealing 2FA tokens from Google Authenticator and SMS messages. It also allows remote control over the device using TeamViewer.[4] It is sold as Malware as a service on underground forums.[5]

References

  1. 1.0 1.1 Cimpanu, Catalin (2020-02-27). "Android malware can steal Google Authenticator 2FA codes". https://www.zdnet.com/article/android-malware-can-steal-google-authenticator-2fa-codes/. 
  2. "Cerberus Android Malware Gains Ability to Steal 2FA Tokens, Screen Lock Credentials". 2020-03-02. https://securityintelligence.com/news/cerberus-android-malware-gains-ability-to-steal-2fa-tokens-screen-lock-credentials/. 
  3. "Coronavirus stimulus scams are here. How to identify these new online and text attacks". CNET. https://www.cnet.com/how-to/coronavirus-stimulus-scams-are-here-how-to-identify-these-new-online-and-text-attacks/. Retrieved 28 April 2020. 
  4. Doffman, Zak (2020-04-09). "New Android Coronavirus Malware Threat Exposed: Here's What You Must Not Do". https://www.forbes.com/sites/zakdoffman/2020/04/09/why-android-users-must-now-dodge-this-simple-15-minute-coronavirus-malware-threat/. 
  5. "Malicious coronavirus-themed apps target Android devices". 2020-03-18. https://www.techrepublic.com/article/malicious-coronavirus-themed-apps-target-android-devices/. 




Retrieved from "https://handwiki.org/wiki/index.php?title=Cerberus_(Android)&oldid=103687"