A new threat named Sturnus has been identified by Threat Fabric, posing a risk to users of WhatsApp, Telegram, and Signal on Android devices. This Trojan, first discovered by MTI Security researchers, allows hackers to remotely control devices, monitor user activities, and carry out unauthorized transactions while concealing the screen.
Sturnus can access and read private messages, steal banking information, and login credentials. It has the ability to bypass encrypted messaging services like WhatsApp, Telegram, and Signal to capture decrypted content directly from the device screen.
Although Sturnus is currently in the early stages of development and has not infected a large number of devices, users should remain vigilant. If hackers find ways to distribute it widely, it could impact millions of Android users.
Threat Fabric warns that Sturnus presents a significant threat by enabling attackers to gain extensive control over infected devices through various means such as credential theft, message monitoring, keylogging, screen streaming, remote control, and more, posing a serious risk to financial security and privacy.
To safeguard against such threats, it is advisable to download apps only from the official Google Play Store, avoid sideloading software, and check app reviews before installation. Despite being a new threat, Sturnus exhibits alarming capabilities that users need to be cautious of.