SLCERT said the new Android malware could steal sensitive financial information.
The malware is capable of reading the SMS of users in order to hijack SMS-based 2 factor authentications.
There are reports of PayPal, HSBC and crypto wallets being targeted.
The malware was first identified in March 2020 and it masks its malicious intent by pretending to be a legitimate application such as Adobe Flash and Microsoft Word. (Colombo Gazette)