Security researchers from ThreatFabric have spotted a new Android malware called Perseus. According to their report and a same-day write-up from BleepingComputer, this thing is designed to dig through note-taking apps on your phone looking for passwords, recovery phrases, financial info, and other personal stuff you might jot down.
What makes this case interesting is that it seems to be the first time researchers have seen Android malware specifically going after the personal notes people keep on their devices. That makes it feel much closer to home than most of the usual banking malware reports.
The malware is being distributed through unofficial app stores by pretending to be IPTV apps, such as one called Roja Directa TV. It makes sense as a tactic because many people who look for free sports streams are already used to sideloading apps and ignoring the normal Android warnings.
Once installed, it can do a lot more than just grab saved passwords. The researchers say that Perseus uses Android’s Accessibility features to take over parts of the phone. It can take screenshots, display fake prompts, record what you type, and quietly navigate through your apps without you noticing immediately.
The note-scanning part is what sets this one apart. It reportedly checks popular apps like Google Keep, Samsung Notes, Xiaomi Notes, Evernote, Microsoft OneNote, ColorNote, and Simple Notes. Then it opens the notes one by one, searching for useful details such as banking info, crypto seed phrases, or those temporary passwords people save and forget to delete.
Similar fake IPTV apps were recently used to spread another malware called Massiv. In Perseus’ case, the main targets seem to be financial institutions in Turkey and Italy, along with several crypto services.
If you want to be safe, the best advice is to avoid sideloading random streaming apps from unknown sources.
Stick with Google Play when you can and keep Play Protect turned on. It shows how something that looks like a free app can become quite expensive very quickly.
Featured image generated with AI
TechIssuesToday primarily focuses on publishing 'breaking' or 'exclusive' tech news. This means, we are usually the first news website on the whole Internet to highlight the topics we cover daily. So far, our stories have been picked up by many mainstream technology publications like The Verge, Macrumors, Forbes, etc. To know more, head here.
Dwayne Cubbins
1447 Posts
For nearly a decade, I've been deciphering the complexities of the tech world, with a particular passion for helping users navigate the ever-changing tech landscape. From crafting in-depth guides that unlock your phone's hidden potential to uncovering and explaining the latest bugs and glitches, I make sure you get the most out of your devices. And yes, you might occasionally find me ranting about some truly frustrating tech mishaps.
Follow Us
