Cleafy’s security researchers have recently identified malicious software known simply as “Teabot” to harvest user data and text messages for fraudulent activities against banks in Spain, Germany, Italy, Belgium, and the Netherlands.
Once Teabot installs on a victim’s device, it will request Android permissions to monitor the user’s actions, retrieve window content, and perform arbitrary gestures. If permission is granted, the app then removes its icon from the device. Teabot’s successful installation then allows the malware’s backers to use it to live stream and interact with the victim’s device.
In January, when the malware was first detected by Cleafy’s Threat Intelligence and Incident Response team, it was reported that the virus enabled fraud against more than 60 banks across Europe.
In May, banks in Italy, Belgium, and the Netherlands battled the virus. While Teabot, which is still in development, initially focused on Spanish banks before spreading its tentacles to banks in Germany and Italy, the malware currently supports 6 languages, including English, German, Italian, Spanish, French, and Dutch.
For more information, read the original story in ZDnet.