Since the beginning of the year, the ‘Chameleon’ Android malware has been preying on victims in Australia and Poland by impersonating the CoinSpot cryptocurrency exchange, an Australian government institution, and the IKO bank. The malware launches and runs a number of tests to avoid being picked up by security software.
Cybersecurity company Cyble reported the dissemination of the mobile virus through hacked websites, Discord attachments, and Bitbucket hosting services. A wide range of dangerous features are included in Chameleon, such as the ability to steal user credentials through overlay injections, keylogging, cookies, and SMS texts from the infected device.