A disturbing new cyber threat known as Crocodilus Malware is rapidly spreading across the globe, compromising Android smartphones with alarming stealth and sophistication.
Originally identified in March by cybersecurity firm ThreatFabric, Crocodilus has recently gained new capabilities that make it more dangerous than ever, including the ability to add fake contacts to victims’ phones, allowing hackers to spoof trusted callers.
“With this new trick, it’s nearly impossible to tell who’s really calling you,” warns BleepingComputer, which first reported on the malware’s latest evolution.
What Is Crocodilus Malware?
Crocodilus is a malicious software strain specifically targeting Android smartphones, first used in attacks against cryptocurrency users in Turkey. It has since expanded to countries like the United States, India, Brazil, Spain, and Argentina, among others.
According to a Field Effect blog post, Crocodilus is distributed through custom droppers—malicious apps or downloads designed to bypass Android’s built-in protections like Accessibility Services and even Google Play Protect.
