Recently identified Xenomorph Android banking trojan samples show an expanded target list that now includes North American users. Initially detailed in February 2022 and likely linked to the infamous banking trojan Alien, Xenomorph relies on overlays to steal users’ personal and login information. It can also intercept notifications and SMS messages to bypass two-factor authentication.
See: https://redskyalliance.org/intel-reports/intelligence-report-weekly-data-and-threats-04-20-2023
The mal