Medusa Strikes Again: New Android Banking Trojan Variant Targets Global Users

Medusa, the Android banking trojan, is back with a vengeance! This lightweight variant is sneakier than ever, requesting fewer permissions and evading detection. Cybersecurity experts warn it’s spreading via dedicated websites and social media, targeting banks in countries like Canada, Spain, and the US. Beware of the “4K Sports” app!

3P
Published: June 26, 2024 7:31 pmAdded: June 26, 2024 at 12:41 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

Guess who’s back? Back again? Medusa’s back, tell a friend. But seriously, if your “friend” is an Android banking app with a penchant for stealing your money, maybe don’t tell anyone.

Key Points:

  • Medusa, an Android banking trojan, has resurfaced with a new variant.
  • The new variant is more elusive, requesting fewer permissions.
  • Significant changes in command infrastructure and capabilities include setting a black screen overlay and taking screenshots.
  • Five distinct botnets using Medusa have been identified, targeting countries like Canada, Spain, France, Italy, the UK, the US, and Turkey.
  • Distribution methods likely include dedicated websites, social media, and phishing, rather than the Google Play Store.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?