Analysts at Trend Micro have discovered a new banker for Android called MMRat. The malware uses the Protobuf (Protocol Buffers) protocol to steal information from hacked devices. MMRat can be found on sites disguised as official app stores. The victims download and install the malicious apps that carry MMRat, usually mimicking an official government or a dating app, and grant risky permissions like access to Android's Accessibility service during installation. MMRat may collect a wide range of device data and personal information, including network, screen and battery data, installed apps, and contact lists.

The researchers recommend Android users only download apps from Google Play, and be cautious at the installation stage where they are requested to grant access permissions.

Source: bleepingcomputer.com