"Fluhorse: Flutter-Based Android Malware Targets Credit Cards and 2FA Codes"
Cybersecurity researchers have shared details regarding the "Fluhorse" Android malware family. According to Fortinet FortiGuard Labs, the malware represents a significant transition because it includes malicious components directly within the Flutter code. Check Point first documented Fluhorse in early May 2023, describing its attacks on users in East Asia via rogue apps masquerading as ETC and VPBank Neo, which are widely used in Taiwan and Vietnam. Phishing is the initial vector of infection for the malware. The malicious apps aim to steal credentials, credit card information, and two-factor authentication (2FA) codes. The most recent findings from Fortinet, which reverse-engineered a Fluhorse sample uploaded to VirusTotal on June 11, 2023, indicate that the malware has evolved by hiding the encrypted payload within a packer. This article continues to discuss the latest findings regarding the Fluhorse Android malware family.
THN reports "Fluhorse: Flutter-Based Android Malware Targets Credit Cards and 2FA Codes"