New Android Malware Steals Crypto Wallet Seed Phrases

A new malware called Crocodilus has emerged, targeting Android users and stealing cryptocurrency wallet seed phrases. This malicious software disguises itself as legitimate crypto apps to trick users into revealing sensitive information. Once installed, Crocodilus uses Android Accessibility permissions for remote control, allowing it to capture data, navigate applications, bypass security measures, and ultimately drain funds from vulnerable victims’ wallets. The malware is distributed through fake app stores, phishing links, and malicious downloads before requesting extensive permissions.