SlowMist Alert: Android Banking Trojan "Crocodilus" Targets Crypto Users

SlowMist has issued a security alert regarding the Android banking Trojan "Crocodilus," which, after a recent upgrade, has launched attacks targeting global cryptocurrency users and banking applications. The main threats include: spreading through fake browser updates in Facebook ads; using overlay attacks to steal login credentials; extracting mnemonic phrases and private keys from crypto wallets; injecting fake "bank support" numbers into contact lists; malware as a service: available for rent (100-300 USD per attack). Users are advised to avoid unknown app updates and ad links.