Crocodilus: New Android Malware Steals Crypto Funds

A newly discovered malware called Crocodilus is targeting Android users, stealing their crypto funds with deceptive tactics. Threat Fabric, a cybersecurity firm, detailed the attack in a recent report published on March 28, 2025. The malware uses fake warning screens to trick victims into revealing their wallet seed phrase, which hackers then exploit for full control of the wallet and theft of funds. Crocodilus can bypass Android’s security measures by using overlay attacks, screen captures, and remote access capabilities.