Experts have discovered a dangerous Crocodilus banking Trojan aimed at Android users. Although Crocodilus is a new banking malware, it features fully developed capabilities to take control of the device, harvest data, and remote control. Initially, Crocodilus disguised itself as popular applications like Google Chrome and ran its windows on top of real banking applications, using which it stole usernames and passwords. The latest version of the “Crocodilus” Android malware has introduced a new mechanism that adds a fake contact to an infected device's contact list to deceive victims when they receive calls from the threat actors. This could allow the threat actors to impersonate trusted banks, companies, or even friends and family members, making the calls appear more trustworthy. Crocodilus is evolving quickly, demonstrating an affinity to social engineering, which makes it a particularly dangerous malware.

Android users are advised to stick to Google Play or trusted publishers when downloading software for their devices, ensuring that Play Protect is always active and minimizing the number of apps they use to the absolute necessary.

Source: bleepingcomputer.com