Android Malware Crocodilus Targets Crypto Users

Reading Time: < 1 minute

Cybersecurity firm Threat Fabric has identified a new type of mobile malware that tricks Android users into revealing their crypto seed phrases by taking control of their devices.

According to a March 28 report, the Crocodilus malware employs a fake screen overlay, warning users to back up their crypto wallet keys by a certain deadline to avoid losing access.

Threat Fabric explained:

“Once a victim enters a password, the overlay displays a message urging them to back up their wallet key in the settings within 12 hours. Failure to do so may result in a reset, potentially causing wallet access loss.”

“This social engineering tactic leads victims to their seed phrase wallet key, allowing Crocodilus to capture the information through its accessibility logger.”