银行木马伪装为 Chrome 浏览器传播

软餐获悉,Android 操作系统上的银行木马 “Chameleon”(变色龙)出现了新的变种。新的变种会伪装为 Chrome 浏览器,它会向用户显示一个 HMTL 页面,提示开启辅助功能服务,以利用辅助功能发起攻击;它还能中断受感染设备上的生物识别操作,以捕获用户输入的 PIN、密码或解锁图案,然后控制设备。“Chameleon” 木马变种通过第三方来源分发其 APK 安装文件,因此用户应避免从第三方下载 Chrome 浏览器或其他应用程序。最早的 “Chameleon” 木马在去年开始传播,最初攻击的重点地区是波兰和澳大利亚,新变种则扩展到了英国和意大利等地区。


A new variant of the banking Trojan “Chameleon” has emerged on the Android operating system. This new variant disguises itself as the Chrome browser and presents users with an HTML page, prompting them to enable accessibility services in order to launch attacks using those services. It can also interrupt biometric operations on infected devices to capture user input such as PINs, passwords, or unlock patterns, and gain control over the device. The “Chameleon” Trojan variant distributes its APK installation files through third-party sources, so users should avoid downloading Chrome browser or other applications from third-party sites. The original “Chameleon” Trojan began spreading last year, initially targeting regions such as Poland and Australia, while the new variant has expanded its reach to countries including the United Kingdom and Italy.

银行木马伪装为Chrome浏览器传播
(0)
瞻宇的头像瞻宇

发表回复

您的邮箱地址不会被公开。 必填项已用 * 标注