Cybersecurity researchers at Threat Fabric have identified a new Android banking trojan named Massiv, which is targeting users by masquerading as legitimate IPTV streaming apps. This malware is part of a new device takeover family, with no direct links to previously known threats.
How Massiv Operates
Once installed, Massiv monitors the apps in use on a device. When a target app, such as a banking application, is opened, Massiv displays a convincing overlay to steal sensitive information like usernames and passwords. This stolen data is then used to open accounts and launder money.
Advanced Capabilities
Massiv also has the capability to stream the device's screen in real time. This feature allows attackers to capture data even if a prebuilt overlay is not available, increasing the risk of credential theft and other malicious activities.
Security Recommendations
To mitigate the risk of infection, Android users are strongly advised to download apps exclusively from the Google Play Store. This precaution can help reduce the likelihood of encountering such malware.
