It first appeared in June last year and is now being openly advertised by its creators on hacker forums to increase its reach. Nexus' primary targets are 450 banking and cryptocurrency apps. , a discontinued third-party YouTube app. It uses all the tricks in the books to gain your banking info and take over your financial accounts.It is capable of performing overlay attacks, i.e.
After it's installed on a device, Nexus connects to its command-and-control server. C2s are used by cybercriminals to control malware, launch attacks, and receive stolen data. Nexus is said to be in the beta stage but it's already being used by many threat actors to carry out nefarious activities. Cybercriminals who do not know how to make their own malware can rent it for $3,000 a month.
It looks like the developer is from a CIS country and has prohibited the trojan's use in Azerbaijan, Armenia, Belarus, Kazakhstan, Kyrgyzstan, Moldova, Russian Federation, Tajikistan, Uzbekistan, Ukraine, and Indonesia.Android devicesTo protect yourself from infections, try to only download apps from Google Play and enable Google Play Protect. Use strong passwords and enable biometric security features where possible and be very careful when granting permissions.
Good thing I installed vanced manager through their official GitHub page years ago 😊👍🏻
Why do you always recommend Gargle Play instead of VirusTotal?