New Android trojan Sturnus can read your private messages
A new Android malware called Sturnus has been discovered, and it's bad news for anyone using WhatsApp, Signal, or Telegram.
This sneaky trojan uses Accessibility Services to peek at decrypted chats—even in supposedly secure apps—and is currently being tested and already targets financial institutions in Southern and Central Europe.
Its advanced tricks suggest it may soon be used in a large-scale campaign.
How Sturnus fools users and sticks around
Sturnus pretends to be trusted apps like Google Chrome to get you to install it.
Once inside your phone, it steals banking info by popping up fake login screens and even hides real transactions with blacked-out screens.
If you try to delete it or take away its permissions, Sturnus fights back—using admin rights to block removal and quickly restoring its access—making it tough to get rid of and a serious risk for personal data.