Rokarolla Android Trojan Combines Banking Fraud with Full Device Surveillance and Remote Control
By
Elizabeth Montalbano
Summary
Researchers at Zimperium zLabs have discovered a new Android banking Trojan called Rokarolla, which represents an evolution in mobile malware by combining traditional banking fraud capabilities with extensive device surveillance, remote control features, and advanced persistence mechanisms. The malware is distributed through malicious websites and masquerades as legitimate apps like fake TikTok and Chrome downloads, demonstrating a significant escalation in Android threat capabilities.
Source
Key quotes
· 3 pulledResearchers at Zimperium zLabs have discovered the malware, dubbed Rokarolla because of the name of its command-and-control (C2) infrastructure
The malware masquerades as legitimate
Yet another Android banking Trojan is making the rounds, one that demonstrates an evolution in the typical malware of its kind by combining banking fraud capabilities with extensive device surveillance, remote control, and persistence mechanisms.
You might also wanna read
F-Droid's satirical critique of Google Play Protect as "malware" on Android
This article from F-Droid is a satirical piece that uses alarmist language to critique how Android's built-in malware protection (Google Pla
Hacker Takes Control of a16z-Backed Startup's 1,100-Phone Farm for AI-Generated TikTok Ads
A hacker gained control of a 1,100-phone farm operated by Doublespeed, an a16z-backed startup that uses AI-generated social media accounts t

Critical BLE Vulnerability Allows Root-Level Takeover of Unitree Robots
Security researchers disclosed a critical Bluetooth Low Energy (BLE) vulnerability in Unitree robots (Go2, B2, G1, H1) on 20 September. The
spectrum.ieee.org·9mo agoPixnapping: New Android Security Attack Steals Data from Apps and Websites
Pixnapping is a new class of Android security attacks that enables malicious apps to stealthily leak information from other apps and website
Android Vulnerability Allows Malicious Apps to Steal 2FA Codes and Private Data Without Permissions
Researchers have discovered a new Android vulnerability called 'Pixnapping' that allows malicious apps to steal sensitive data including 2FA
arstechnica.com·8mo ago
U of T researchers discover AI worm that can spread across online devices and hijack networks
University of Toronto researchers have discovered a new class of cyberthreat — an AI-powered worm that can adapt its strategy as it spreads

Comments
Sign in to join the conversation.
No comments yet. Be the first.