Security researchers at Lookout have discovered the Anubis Android Banking malware is again wreaking havoc after being found targeting the customers of nearly 400 financial institutions, cryptocurrency wallets and virtual payment platforms.
This new malware campaign is also masquerading as the official account management application from leading French telecommunications company, Orange S.A.
The infamous Anubis is known for collecting significant data about its victim from their mobile device for financial gain. This is done using a number of techniques including intercepting SMSs, keylogging, file exfiltration, screen monitoring, GPS data collection and abuse of the device’s accessibility services.
It is understood that the Lookout team is working with Orange to remediate the issue and protect customers.
For those unaware, Anubis was first found across Russian hacking forums in 2016 and was leveraged as an open-source banking trojan with instructions on implementing its client and components.
Being a critical mobile threat, Lookout has revealed that Anubis has the following abilities:
Anubis even has the ability to prevent malicious functionality from interfering with its processes and from removing the malware from the device.
In order for Anubis to achieve this, it is stated that the malware needs to ensure the device owner enables third-party apps.
As of now, the threat actors behind this malware campaign or distribute Anubis are not known.
The full research blog can be found here:
The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY
Follow Us
© 2015 – 2019 IT Security Guru – Website Managed by Calm Logic
© 2015 – 2019 IT Security Guru – Website Managed by Calm Logic
This site uses functional cookies and external scripts to improve your experience.
Privacy settings
Privacy Settings / PENDING
This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.
NOTE: These settings will only apply to the browser and device you are currently using.
GDPR Compliance


You May Also Like

Most Inspiring Women in Cyber 2021: Gamze Konyar, Head of Cyber at Marsh CEE & Eastern Mediterranean Regions

The IT Security Guru’s Most Inspiring Women in Cyber Awards aims to…

Attack on Supplier Leaves NHS Recovering Services

A cyberattack, first identified last Thursday, has caused a “major” computer system…

One in seven ransom extortion attempts leak key operational data

One in seven ransomware extortion data leaks are revealing technology data critical…

API and database issues cause Discord outage

Discord has announced that it suffered a ‘massive outage’, which affected user…