1. PixelPlaygroundHome
  2. Blockchain Briefs

The Nexus Trojan: An Android Malware Targeting Banks and Cryptocurrency Services

Blockchain Briefs 124 views

On March 24th, Italian cybersecurity company Cleary discovered an Android Trojan named \”Nexus\” that can hijack online accounts and steal funds from them, targeting 450 banks and cu

The Nexus Trojan: An Android Malware Targeting Banks and Cryptocurrency Services

On March 24th, Italian cybersecurity company Cleary discovered an Android Trojan named “Nexus” that can hijack online accounts and steal funds from them, targeting 450 banks and customers of cryptocurrency services worldwide. The Trojan was discovered using Android’s “accessibility service” feature to steal private keys and balance information from cryptocurrency wallets, cookies from target websites, and dual factor authentication (2FA) for Google Authenticator applications. (csoonline)

Android Trojan virus Nexus may steal encrypted private keys

Introduction

On March 24th, the Italian cybersecurity firm Cleary uncovered an Android Trojan that they named “Nexus.” The malware was found to be capable of hijacking online accounts from up to 450 banks and customers of cryptocurrency services worldwide. The Trojan was using the accessibility service feature in Android to steal user data, including private keys and balance information from cryptocurrency wallets, cookies from target websites, and 2-factor authentications for Google Authenticator applications. This article will take a closer look at the Nexus Trojan, how it works, and what you can do to protect yourself.

How Nexus Trojan Works

The Nexus Trojan is a form of malware that is specifically designed to target Android users. The Trojan primarily uses accessibility service, which is designed to help users with disabilities interact with their Android devices more easily. Unfortunately, this feature can also be used by hackers to mislead users into giving access to their sensitive data. Once the Nexus Trojan has found its way into a user’s device, it begins to conduct its malicious activities.
The Trojan is capable of intercepting a user’s credentials, private keys, balance information, and 2-factor authentications from cryptocurrency wallets. It then sends this information to a server that is controlled by the hackers. In addition to cryptocurrency information, Nexus can also steal cookies, which can be used to access target websites, as well as swipe passwords and other private information, leading to identity theft or financial fraud.

Who Is At Risk?

The Nexus Trojan can affect anyone who uses an Android device or any of the targeted banks and cryptocurrency services. As the malware has the capability to steal user data from a wide range of sources, everyone must be on high alert. It is also possible for attackers to target specific user accounts to funnel a particular user’s assets.

How To Protect Yourself from Nexus

To avoid falling prey to the Nexus Trojan or any other Android malware, there are a few important steps you can take:
– First, you should never download apps from third-party app stores.
– Second, you should always read permissions before downloading an app.
– Third, you should keep your Android device software up to date and regularly install official security updates.
– Fourth, you should enable Google Play Protect.
– Fifth, you should always be careful of phishing emails and never click on unknown URLs.

Conclusion

The Nexus Trojan is a dangerous form of Android Malware that can have severe consequences for its victims. By stealing private keys and balance information from cryptocurrency wallets, cookies from target websites, and 2-factor authentications for Google Authenticator applications, the Nexus Trojan can lead to significant identity theft or financial fraud. Everyone must take steps to protect themselves from this and any other form of malware. By being vigilant and cautious, you can avoid being a victim of such attacks.

Unique FAQs

Q. Has the Nexus Trojan affected everyone who has an Android phone?
No, it only affects users who have downloaded infected apps or clicked on phishing emails that contained this Trojan.
Q. Can I recover my stolen balance information and 2-factor authentications?
If you suspect that you have fallen prey to the Nexus Trojan or any other malware, you should immediately contact your bank, your cryptocurrency service provider, and your local law enforcement agencies.
Q. Can I trust accessibility services on Android?
Yes, accessibility services are designed to help users with disabilities to interact with their Android devices more easily. However, it is essential to check the permissions whenever you install a third-party app or an app that requests permission to access this service.

This article and pictures are from the Internet and do not represent Fpips's position. If you infringe, please contact us to delete:https://www.fpips.com/9266/

It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.

Like (0)
Previous 03/24/2023 13:37
Next 03/24/2023 13:41

Recommended articles