The new “Chameleon” malware for Android phones is targeting cryptocurrency enthusiasts in Poland and Australia.
Android users have been alerted to a new malware known as “Chameleon,” which targets cryptocurrency enthusiasts in Poland and Australia. The malware impersonates the CoinSpot cryptocurrency exchange and can steal user passwords, cookies, SMS messages, and more. Researchers at Cyble discovered the malware in early 2023 and found that attackers disseminated it through hijacked websites and “Discord” forums. Additionally, the malware masquerades as an Australian government agency and a Polish IKO bank.
The Chameleon malware searches for surveillance software on the victim’s device before running and will not start if debugging is enabled due to fears of being discovered in analytics mode. IT professionals advise against downloading Android apps from sources other than the Google Play Market and recommend that Google Play Protect antivirus is always turned on.
Previously, it was reported that criminals distributed malware under the guise of the desktop version of OpenAI’s ChatGPT chatbot, posing a threat to both Android and Windows operating systems. Fraudsters set up fake pages on social media, and Cyble has identified at least 50 infectious software programs masquerading as ChatGPT. ChatGPT is a chatbot developed by OpenAI that uses artificial intelligence to produce human-like responses and understands the context and meaning of messages. Users should exercise caution when downloading chatbots and avoid providing credit card information to untrusted websites.