Android malware now has evolved and uses 27 different languages
Roaming Mantis is a banking trojan also known as XLoader and MoqHao. Previously, it mainly affected only Android devices, including smartphones, tablets, etc. According to the researchers, this malicious program was active just in Bangladesh, China, India, Korea, and Japan.
However, the latest news show that Roaming Mantis has been translated into more than 27 other languages and updated with additional features. Currently, this banking trojan targets people from Europe and the Middle East, including:
- Traditional Chinese;
- Simplified Chinese.
Suguru Ishimaru, the security researcher at Kaspersky Lab, thinks that hackers have used standard techniques to translate the text into different languages automatically and spread their infection globally:
We believe the attacker made use of an easy method to potentially infect more users, by translating their initial set of languages with an automatic translator.
Criminals aim to infect iOS devices as well
While Roaming Mantis virus was initially designed for Android only, now hackers have switched their tactics and also target iOS gadgets. Experts claim that the purpose of such actions is to spread the infection globally since the new iOS phishing attacks allow the crooks to get user's credentials.
According to the research, bogus DNS service resolves hxxp://security.apple.com/ domain to the 172.247.116[.]155 IP address which results in a redirect to the phishing website which looks exceptionally similar to legitimate Apple site. Thus, people are tricked to provide sensitive data directly to the criminals.
The fake website is also translated into 25 different languages and is designed to collect Apple ID details, including credit card number, expiration date, CVV code, log in and password. The only two languages that are missing — Georgian and Bengali.
Roaming Mantis is updated to perform crypto-mining activities
Once the user is connected to the landing page from the computer, its CPU power becomes accessible to the web miner. Likewise, CPU usage might increase up to 100% and cause PC damage or significant deterioration of its performance. In the long-run, some devices may even become unusable.