A Global Threat To Financial Applications And Digital Assets

• Global Targeting: Hackers are targeting over 400 financial applications worldwide, including traditional banks, fintech apps, and crypto exchanges.

• Albiriox Malware: The malware used in these attacks is called Albiriox, a highly sophisticated remote-access trojan (RAT) designed to take full control of an infected device.

• Financial Platforms Targeted: Albiriox targets a broad spectrum of financial platforms, including payment processors, mobile wallets, and trading platforms.

• Compromising Mainstream and Crypto Users: The wide reach of Albiriox signals a deliberate effort to compromise both mainstream financial users and those holding digital assets.

• Fake Apps and SMS Links: The malware spreads through fake apps that pretend to be real ones, often hosted on fake Google Play pages, which are accessed via SMS links.

• Permission-Based Installation: To install the malware, users must allow permissions, which then drops the virus onto their device.

• Bypassing Security Measures: Albiriox allows attackers to bypass biometric checks, two-factor authentication, and other fraud-detection safeguards by behaving like the legitimate user.

• Significant Shift in Mobile Cybercrime: Cleafy concludes that Albiriox represents