The Computer Security Incident Response Team (CSIRT) of the Nigerian Communications Commission’s (NCC) says it had discovered a newly-hatched malicious software that steals users’ banking app login credentials on Android devices. NCC’s Director of Public Affairs (DPA), Dr Ikechukwu Adinde, disclosed this in a statement on Sunday, in Abuja. “In reality, this app is only a means by which the Xenomorph Trojan could be propagated easily and efficiently. “The CSIRT said the malware also steals victims’ banking credentials by overlaying fake login pages on top of legitimate ones. The News Agency of Nigeria (NAN) reports that Xenomorph has been found to target 28 banking apps from Spain, 12 from Italy, 9 from Belgium, and 7 from Portugal.

Source: The Guardian February 27, 2022 11:11 UTC