RedWing Malware Exploits Telegram for On-Device Bank Fraud via Rental Service
A new Android malware operation named RedWing is rented out on Telegram as a complete, ready-made service allowing low-skill criminals to steal banking credentials and one-time codes. This sophisticated kit leverages Android's Accessibility service to perform real-time screen streaming, keylogging, and call interception, enabling advanced on-device fraud.
A new Android malware operation called RedWing is being rented out on Telegram as a ready-made bank-fraud service. It lets even low-skill criminals take over a victim's phone, steal their banking logins, and capture the one-time codes that protect their accounts.
Zimperium's zLabs, which found the operation, says it looks like a new variant of Oblivion, a $300-a-month rent-a-malware tool
*** END OF TRANSMISSION ***