Vultur Android Malware Swoops In To Stealthily Steal Banking Credentials
Some vultures prey on dead animals, other Vulturs prey on banking information entered on Android devices. In late March of this year, ThreatFabric detected an Android-based remote access trojan (RAT) malware, dubbed Vultur, collecting login credentials. However, the threat actors took a different approach to the thievery by simply recording what is shown on a screen through VNC.
As ThreatFabric describes, a “vulture is a large bird of prey that specializes in attacking and feeding on weak and helpless animals,” and they keep their “eyes on their preys for a long time before making a move, which happens only when they are sure the attack is lethal and successful.” The Vultur malware works similarly, wherein it observes everything happening on a device with screen recording over VNC and keylogging capabilities.
However, while having mobile financial data is not necessarily bad, everyone needs to be more careful. Moreover, unless companies work harder to secure devices and app stores, we will only see the trend expand exponentially, as it is a good way for a threat actor to make a quick buck.