Crocodilus Malware Targets Cryptocurrency Users in Global Expansion

A recent upgrade of the Crocodilus Android malware has resulted in a significant increase in attacks targeting cryptocurrency users and financial institutions worldwide. ThreatFabric reports that this trojan, initially limited to Turkey, now spans various countries including Poland, Spain, and Argentina. The latest iteration of Crocodilus uses deceptive tactics such as fake browser updates advertised through Facebook ads to gain access to banking and cryptocurrency platforms by exploiting overlay attacks for login credential theft.