1. QiAi QuestsHome
  2. Crypto & Markets

How the Nexus Trojan Can Steal Funds and Hijack Online Accounts

Crypto & Markets 102 views

On March 24th, Italian cybersecurity company Cleary discovered an Android Trojan named \”Nexus\” that can hijack online accounts and steal funds from them, targeting 450 banks and cu

How the Nexus Trojan Can Steal Funds and Hijack Online Accounts

On March 24th, Italian cybersecurity company Cleary discovered an Android Trojan named “Nexus” that can hijack online accounts and steal funds from them, targeting 450 banks and customers of cryptocurrency services worldwide. The Trojan was discovered using Android’s “accessibility service” feature to steal private keys and balance information from cryptocurrency wallets, cookies from target websites, and dual factor authentication (2FA) for Google Authenticator applications. (csoonline)

Android Trojan virus Nexus may steal encrypted private keys

The world of technology is advancing at a rapid pace, and while it has brought us immense convenience, it has also made us vulnerable to cyber-attacks. Recently, a cybersecurity company in Italy discovered an Android Trojan named “Nexus” that can hijack online accounts and steal funds from them. In this article, we will explore how the Nexus Trojan works and how users can protect themselves from such attacks.

What is the Nexus Trojan?

On March 24th, Cleary, an Italian cybersecurity company, discovered the Nexus Trojan. Nexus is a malicious software that targets Android devices and can steal private keys and balance information from cryptocurrency wallets. It can also extract cookies from target websites and bypass dual-factor authentication (2FA) for Google Authenticator applications. The Trojan is known to target 450 banks and customers of cryptocurrency services worldwide.

How Does Nexus Work?

Nexus uses Android’s “accessibility service” feature, which is designed to help people with disabilities access their devices more easily. The Trojan exploits this feature by gaining access to the user’s device and extracting the necessary information. Once Nexus has access, it can perform a range of malicious activities including accessing online accounts, stealing funds from cryptocurrency wallets, and committing financial fraud.

How Can Users Protect Themselves from Nexus?

The discovery of the Nexus Trojan highlights the need for users to take proactive measures to protect themselves from cyber threats. Here are some steps that users can take to secure their devices and online accounts:

1. Keep Your Software Up-to-Date

Keeping your device’s software updated is one of the most effective ways to protect yourself from cyber threats. Software updates often include security patches that protect against known vulnerabilities.

2. Use Strong Passwords and 2FA

It is important to use strong, unique passwords for all your online accounts. Additionally, enabling 2FA for your accounts can add an extra layer of protection by requiring a unique code in addition to your password to gain access.

3. Avoid Downloading Suspicious Apps

Only download apps from trusted sources like Google Play Store or Apple App Store. Avoid downloading suspicious apps from third-party sources that may contain malware.

4. Use a Reliable Antivirus Program

Using a reliable antivirus program can help protect your device from malicious software like Nexus. Antivirus programs can detect and remove malware from your device.

5. Stay Informed

Finally, staying informed about the latest cyber threats and security measures is crucial for protecting yourself from attacks like Nexus.
In conclusion, the Nexus Trojan is a dangerous threat that targets Android devices and can steal private information and funds from vulnerable users. However, by taking proactive measures and following security best practices, users can significantly reduce their risk of falling victim to such attacks.

FAQs

Q: What is the “accessibility service” feature in Android devices?
A: The “accessibility service” feature in Android devices is designed to make it easier for people with disabilities to use their devices by providing additional features like spoken feedback and notification readouts.
Q: How does Nexus bypass dual-factor authentication (2FA) for Google Authenticator applications?
A: Nexus uses the “accessibility service” feature to read the one-time code generated by 2FA applications like Google Authenticator, allowing the attackers to bypass this security feature.
Q: How can users know if their device has been infected by Nexus?
A: Nexus is designed to operate stealthily and avoid detection. Users can look out for unusual activities like unauthorized access to their accounts or unexplained financial transactions.

This article and pictures are from the Internet and do not represent qiAiAi's position. If you infringe, please contact us to delete:https://www.qiaiai.com/crypto/9296.html

It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.

Like (0)
Previous 03/24/2023 13:37
Next 03/24/2023 13:41

Related recommendations

  • Coinbase's Chief Legal Officer on the Lawsuit Against Tornado Cash Crypto & Markets

    Coinbase’s Chief Legal Officer on the Lawsuit Against Tornado Cash

    According to reports, Coinbase\’s Chief Legal Officer, Paulgrewal. eth, tweeted that Coinbase had previously announced funding for a lawsuit filed by six individuals against Tornado

    04/06/2023
    72
  • Whale Transfers 1000 WBTC to Coin An: Market Shifting Down Crypto & Markets

    Whale Transfers 1000 WBTC to Coin An: Market Shifting Down

    It is reported that according to PeckShield monitoring, the address of the giant whale at the beginning of 0x54dd is transferred to 1000 WBTCs to Coin An.
    0x54d

    03/11/2023
    62
  • Mining Contract Dispute: Bitcoin Takes Legal Heat in China Crypto & Markets

    Mining Contract Dispute: Bitcoin Takes Legal Heat in China

    On March 28, it was reported that recently, the Tengchong court concluded the first Bitcoin \”mining\” contract dispute case in Tengchong. The court ruled that the contract was inval

    03/28/2023
    64
  • What is Akasha (meaning of Akasha)? Crypto & Markets

    What is Akasha (meaning of Akasha)?

    Akasha is a blockchain technology that is being increasingly accepted worldwide

    08/20/2023
    159
  • Alphonance Launches Borrower Pool on Clearpool Unsecured Lending DeFi Protocol Crypto & Markets

    Alphonance Launches Borrower Pool on Clearpool Unsecured Lending DeFi Protocol

    On April 27th, it was announced that Alphonance, a crypto native trading and investment company, has launched a borrower pool on the Clearpool unsecured lending DeFi protocol. Alph

    04/27/2023
    70
  • US SEC's Regulatory Action Causes Instability in BUSD's Anchor Price Crypto & Markets

    US SEC’s Regulatory Action Causes Instability in BUSD’s Anchor Price

    On February 13, it was reported that after the US SEC took regulatory action against the issuer of BUSD, Paxos, the anchor price of BUSD began to be unstable. …

    02/13/2023
    102
  • Table of Contents: Crypto & Markets

    Table of Contents:

    According to the CoinShares Weekly Report, last week\’s net inflow of digital asset investment products was $160 million, the largest inflow since July 2022. After six consecutive w

    03/27/2023
    67
  • Archblock Transfers $1 Billion of Reserves to a Bahamas Bank for TrueUSD Crypto & Markets

    Archblock Transfers $1 Billion of Reserves to a Bahamas Bank for TrueUSD

    According to reports, Archblock, the issuer of TrueUSD stable coins, has transferred $1 billion of reserves supporting the token to a bank in the Bahamas. An independent accounting firm released real-time proof on Wednesday that Archblock oversees approximately $2 billion of reserves supporting its TrueUSD stable currency and currently holds more than $1.4 billion in funds at Nassau Capital Union Bank. This is an increase from $438 million on March 10th. (Bloomberg) Archblock, the issuer of TrueUSD stable currency, transferred $1 billion of reserves to the Bahamas Analysis based on this information:Archblock, the issuer of TrueUSD stable coins, has transferred $1 billion of reserves supporting the token to a bank in the Bahamas, according to reports. This move by Archblock is significant as it indicates that the company is looking to expand its reach and safeguard the stability of TrueUSD. The transfer of reserves to a Bahamas bank not only helps to strengthen the backing of the token, but it…

    03/15/2023
    78
  • IOSG Ventures Denies Any Recent USDC Transactions Crypto & Markets

    IOSG Ventures Denies Any Recent USDC Transactions

    According to reports, IOSG Ventures issued a statement that it had never conducted any USDC transactions in the past 7 days, and its exposure to SVB and Silvergate was zero. IOSG Ventures: zero exposure to SVB and Silvergate Analysis based on this information:IOSG Ventures, a leading venture capital firm, recently released a statement confirming that it has not engaged in any USDC (USD Coin) transactions within the past seven days. The firm also clarified that its exposure to SVB and Silvergate, two prominent banking institutions in the crypto industry, was zero. The announcement comes amid growing concerns over the stability of the USDC stablecoin, which is pegged to the US dollar. In recent weeks, several cryptocurrency exchanges have reported sudden spikes in USDC inflows, leading to speculation that the token may be used for market manipulation. IOSG Ventures’ statement seeks to reassure investors that the firm has no involvement in these activities. By affirming that it has not conducted any…

    03/12/2023
    72
  • Mongral's NFT Portfolio Boosts After Selling "Jimmy Key" Crypto & Markets

    Mongral’s NFT Portfolio Boosts After Selling “Jimmy Key”

    It is reported that after DooKey Dash champion Mongral sold \”Jimmy Key\” at 1000 ETH today, relevant wallet data showed that he still held 13 \”sewer passes\” in …

    02/28/2023
    73