New Android trojan bypasses secure messaging protections.

ThreatFabric researchers identified a new Android banking trojan called Sturnus, aimed at financial customers in Central and Southern Europe. The malware can perform overlay attacks with fake bank login screens, log keystrokes, and allow remote device control after gaining administrator privileges. Its most dangerous feature is monitoring apps like WhatsApp, Telegram, and Signal, capturing decrypted messages directly from the screen. By exploiting Android’s Accessibility Service, Sturnus sidesteps end-to-end encryption, giving attackers real-time access to private conversations.

Read more:

https://www.securityweek.com/new-sturnus-banking-trojan-targets-whatsapp-telegram-signal-messages/