嗯,用户让我帮忙总结一篇文章,控制在100字以内,而且不需要特定的开头。首先,我需要仔细阅读文章内容,抓住主要信息。 文章讲的是一个叫Perseus的安卓恶意软件,伪装成电视流媒体应用来窃取用户的密码和银行数据,还能监控个人笔记。主要针对土耳其和意大利用户。它利用了之前泄露的代码,比如Cerberus。传播方式是通过伪装成IPTV应用,这些应用通常在非官方市场下载,用户容易手动安装而不怀疑。 一旦安装,Perseus能实时监控用户活动,使用覆盖攻击和键盘记录功能窃取凭证。特别的是,它专门扫描并提取笔记应用中的敏感信息。此外,文章还提到其他安卓恶意软件也在不断进化。 现在我要把这些信息浓缩到100字以内。重点包括:Perseus伪装成流媒体应用、窃取数据、实时监控、攻击笔记应用、针对土耳其和意大利。可能还需要提到它利用旧代码和传播方式。 最后组织语言,确保简洁明了。 </think> 一种名为Perseus的新型安卓恶意软件伪装成电视流媒体应用,窃取用户密码、银行数据并监控个人笔记。该恶意软件主要针对土耳其和意大利用户,并利用旧版安卓银行木马的泄露代码进行攻击。 2026-3-19 17:0:47 Author: therecord.media(查看原文) 阅读量:4 收藏
A newly discovered Android malware is masking itself within television streaming apps in order to steal users' passwords and banking data and spy on their personal notes, researchers have found. The malware, dubbed Perseus by researchers at ThreatFabric, is being actively distributed in the wild and primarily targets users in Turkey and Italy, according to a report released on Thursday. Perseus builds on the leaked code of older Android banking trojans, including Cerberus, a prolific malware family whose source code was exposed in 2020. To infect devices, attackers disguise the malware inside apps that appear to offer IPTV services — platforms that stream television content over the internet. These apps are also widely used to stream pirated content and are often downloaded outside official marketplaces like Google Play, making users more accustomed to installing them manually and less likely to view the process as suspicious. Once installed, Perseus can monitor nearly everything a user does in real time. It uses overlay attacks — placing fake login screens over legitimate apps — and keylogging capabilities to capture credentials as they are entered. The malware’s most unusual feature, according to ThreatFabric, is its focus on personal note-taking applications. Perseus actively scans infected devices for apps such as Google Keep, Evernote, and Simple Notes, then opens them and extracts stored content. Notes can contain highly sensitive information, including passwords, financial details, and recovery phrases, making them a valuable target for attackers, researchers said. Android malware is continually evolving, incorporating new techniques and features to gain victims’ trust and evade detection, according to ThreatFabric. Earlier in October, researchers identified another Android banking trojan, Herodotus, capable of mimicking human behavior to evade detection during remote device control. Another malware, known as Crocodilus, can manipulate victims’ contact lists, enabling attackers to impersonate trusted entities such as banks.
Get more insights with the
Recorded Future
Intelligence Cloud.
No previous article
No new articles
Daryna Antoniuk
is a reporter for Recorded Future News based in Ukraine. She writes about cybersecurity startups, cyberattacks in Eastern Europe and the state of the cyberwar between Ukraine and Russia. She previously was a tech reporter for Forbes Ukraine. Her work has also been published at Sifted, The Kyiv Independent and The Kyiv Post.
如有侵权请联系:admin#unsafe.sh