On June 4th, SlowMist released a security alert that the Android banking Trojan "Crocodilus" has recently upgraded to launch attacks targeting global cryptocurrency users and banking applications, with the main threats including:
Spreading through false browser updates in Facebook ads;
Using overlay attacks to steal login credentials;
Extracting seed phrases and private keys from crypto wallets;
Injecting fake "bank support" numbers into contact lists;
Malware-as-a-Service: available for rent (100-300 USD per attack).
Users are reminded to avoid unknown app updates and ad links.
