"SpyNote Strikes Again: Android Spyware Targeting Financial Institutions"

Since at least October 2022, a new variant of the Android malware SpyNote, also known as SpyMax, has been targeting financial institutions. ThreatFabric stated that the developer of the malware, who previously sold it to other parties, made the source code public. This has helped other malicious actors in the development and distribution of spyware, which often targets financial institutions. The malware impersonates major financial institutions such as Deutsche Bank, HSBC UK, Kotak Mahindra Bank, and Nubank. SpyNote is equipped with many features that enable it to install arbitrary apps, collect SMS messages, phone conversations, videos, and audio recordings, as well as track GPS locations. It can even impede attempts to uninstall the application. It requests access to accessibility services in order to extract two-factor authentication (2FA) codes from Google Authenticator and record keystrokes in order to steal banking credentials. This article continues to discuss the new version of the SpyNote Android malware. 

THN reports "SpyNote Strikes Again: Android Spyware Targeting Financial Institutions"