A new Android banking Trojan named Antidot mimics Google Play updates, utilizing VNC, keylogging, and call forwarding to steal credentials and control devices, with fake update pages in multiple languages, social engineering tactics to gain accessibility permissions, real-time communication with C&C server using HTTP and WebSocket protocols, and overlay attacks and keylogging to steal sensitive information. ```
https://cybersecuritynews.com/android-banking-trojan-google-play-mimic/