"Nexus: A New Rising Android Banking Trojan Targeting 450 Financial Apps"

Threat actors have already launched the Android banking Trojan called Nexus to target 450 financial apps and commit fraud. According to the cybersecurity company Clearfy, Nexus is in its early stages of development. Nexus includes all the basic functionality for performing Account Takeover (ATO) attacks against banking portals and cryptocurrency services, such as stealing credentials and intercepting SMS messages. The Trojan, which debuted in multiple hacking forums at the beginning of the year, is offered as a subscription service for $3,000 per month. There is evidence that the malware may have been used in real-world attacks as early as June 2022, at least six months prior to its emergence on darknet portals. Researchers also believe it shares similarities with another banking Trojan known as SOVA, recycling parts of its source code and including a ransomware module appearing to be in active development. This article continues to discuss findings regarding the new Nexus Android banking Trojan. 

THN reports "Nexus: A New Rising Android Banking Trojan Targeting 450 Financial Apps"