You are here: Blog Josh Coppage Can Your Business Save Time and Money With Supply Chain Management Technology?

Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Watch Out for This Scary New Malware: Crocodilus

Voyage Technology Blog Security
Watch Out for This Scary New Malware: Crocodilus

Mobile malware doesn’t get talked about a lot, and that’s because it’s relatively uncommon compared to others, but it’s still just as dangerous. Crocodilus, a new Trojan on the Android platform, is one such example. Today, we want to cover how you can address this new variant and avoid contact with it.

Crocodilus was first identified early in 2025, and it’s not just a data thief; it’s a comprehensive remote access Trojan (RAT). It can take over infected devices and steal sensitive financial information, especially banking credentials and cryptocurrency assets.

Luring in Unsuspecting Prey

Crocodilus is a threat used in conjunction with various social engineering tactics to lure in prey and strike. Its influence ranges from Turkey and Spain, all the way to Europe, South America, the United States, and parts of Asia.

Crocodilus spreads by malicious advertisements on social media platforms like Facebook. These ads might look like legitimate banking or e-commerce applications, and they might even offer special bonuses or time-sensitive offers. Once the user clicks on the ad, though, they are redirected to a malicious website that downloads Crocodilus. It bypasses all the security restrictions in place on newer Android versions—the ones intended to prevent the sideloading of malicious applications.

How Crocodilus Works

Crocodilus leverages Android’s Accessibility Services—services designed to assist users with disabilities while interacting with the device. It’s a despicable use of well-intentioned tools. Here’s what Crocodilus can do:

  • Overlay attacks - The malware can show fake login screens over legitimate banking and cryptocurrency apps, leading to users willingly giving away login credentials right to attackers.
  • Keylogging - Crocodilus records keystrokes and records everything… passwords, PINs, and private messages included.
  • Remote device takeover - This malware allows criminals to control the infected device, including navigating through apps, making transactions, and transferring funds.
  • Data theft - Crocodilus can steal information like contact lists, SMS messages, and data from other applications.
  • Cryptocurrency wallet theft - Crocodilus can steal the seed phrases used in cryptocurrency wallets through social engineering prompts like fake security backup alerts, all to get the user to share their recovery keys.
  • Encrypting its own code - Crocodilus is changing as time goes on, and a new variant called Pragma includes native code that encrypts its malicious payload, making it harder to detect and analyze.

Crocodilus is Rapidly Evolving

The hackers behind Crocodilus are continuously making efforts to upgrade and refine the malware, which has led to its rapid evolution in a short period of time. New features are constantly being added to make it more effective and dangerous, including one which allows the malware to add fake contacts to a victim’s contact list. This could make malicious calls look like they’re coming from a legitimate source and establish trust that should absolutely not be granted.

How to Protect Yourself from Crocodilus

There are ways to take the fight to Crocodilus, and they’re not terribly complicated ones. First, make sure you're not installing apps from unofficial sources; download from the Google Play Store and other trusted app storefronts. You should also be wary of any permissions you give to your apps, especially those that are requesting access to Accessibility Services. If the app doesn’t need access to services to work, but requests them anyway, consider it a red flag. Finally, make sure you update your Android operating system to the latest version, complete with the latest security patches and updates.

Worried about the latest digital threats? Voyage Technology can help. To learn more, call us at 800.618.9844.

Tweet
Tags:
Android Malware Security

Sign Up For Our Newsletter!

Blog Categories

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Data Business Computing Business Productivity Software Innovation Cloud Hackers Hardware Network Security Efficiency User Tips Internet Malware IT Support Privacy Google Email Workplace Tips Computer Phishing IT Services Collaboration Hosted Solutions Users Workplace Strategy Ransomware Mobile Device Microsoft Small Business Backup Quick Tips Productivity Passwords Saving Money Communication Cybersecurity Smartphone Data Backup Managed Service Android Upgrade Data Recovery VoIP Business Management Smartphones AI Disaster Recovery Mobile Devices communications Windows Browser Social Media Microsoft Office Managed IT Services Current Events Tech Term Network Internet of Things Remote Artificial Intelligence Facebook Miscellaneous Information Automation Gadgets Cloud Computing Covid-19 Holiday Training Managed Service Provider Remote Work Server Outsourced IT Compliance IT Support Encryption Spam Employee/Employer Relationship Office Windows 10 Business Continuity Data Management Government Bandwidth Windows 10 Virtualization Blockchain Wi-Fi Business Technology Mobile Office Data Security Apps Vendor Two-factor Authentication Tip of the week Chrome Mobile Device Management Budget Managed Services Voice over Internet Protocol Gmail Apple Networking App Employer-Employee Relationship BYOD Marketing Conferencing How To WiFi BDR Computing HIPAA Information Technology Applications Hacker Access Control Avoiding Downtime Office 365 Analytics Website Office Tips 2FA Help Desk Augmented Reality Retail Storage Password Bring Your Own Device Healthcare Managed IT Services Big Data Operating System Router Virtual Private Network Risk Management Computers Health Monitoring Document Management Excel Firewall Remote Workers Scam Data loss Telephone The Internet of Things Cooperation Free Resource Project Management Social Windows 7 Going Green Patch Management Save Money Remote Monitoring End of Support Microsoft 365 Vulnerability Vendor Management Cybercrime Solutions Physical Security Customer Service Display Printer Paperless Office Infrastructure Windows 11 Data Storage Outlook Smart Technology Supply Chain Machine Learning Video Conferencing Money Word Managed Services Provider Humor Professional Services Saving Time Virtual Machines Maintenance Managed IT Service Antivirus Sports Mouse Downloads iPhone Safety Administration Licensing Vulnerabilities Entertainment Data Privacy Robot Images 101 Mobility Settings Telephone System Multi-Factor Authentication Wireless Cost Management Printing Content Filtering IT Management Customer Relationship Management VPN YouTube Meetings Cryptocurrency Employees Integration Hacking Presentation Computer Repair User Tip Modem Mobile Security Virtual Desktop Processor LiFi Wireless Technology Data storage Holidays Electronic Medical Records Mirgation Hypervisor Displays SharePoint PowerPoint Halloween Shopping Recovery Nanotechnology Optimization Hard Drives Writing Addiction Language Employer/Employee Relationships Outsourcing Lenovo Domains Virtual Reality Management PCI DSS Chatbots Navigation Distributed Denial of Service Workplace Hacks Server Management Scary Stories Private Cloud Gig Economy Screen Reader Refrigeration Fun Service Level Agreement Internet Service Provider Computing Infrastructure Teamwork Hiring/Firing Superfish Identity Theft Deep Learning Public Speaking Twitter Regulations Compliance Identity Evernote Paperless Co-managed IT Lithium-ion battery Error Bookmark Smart Tech Memes Social Engineering Download Net Neutrality Entrepreneur Alerts SQL Server Technology Care Education Remote Computing Financial Data History Business Communications Connectivity IT Break Fix Scams Mobile Computing Browsers Smartwatch Tablet Undo Search Upload Procurement Azure Hybrid Work Multi-Factor Security Tech Human Resources Best Practice Alert Social Network Telework Cyber security Dark Data IoT Communitications Dark Web Cables Managed IT Buisness File Sharing CES IT solutions How To Trends Supply Chain Management Legal Google Calendar Term Google Apps Business Growth Notifications Customer Resource management FinTech Regulations Star Wars IT Assessment Microsoft Excel IT Maintenance Travel Data Analysis Application Google Maps Cortana Gamification Flexibility Staff Value Business Intelligence Techology Legislation Shortcuts Alt Codes IBM Organization Social Networking Smart Devices Ransmoware Downtime Unified Threat Management Fileless Malware Digital Security Cameras Hosted Solution Content Remote Working Wearable Technology Memory Vendors Unified Threat Management Comparison Google Play Be Proactive Typing Health IT Motherboard Data Breach Network Congestion Assessment Electronic Health Records Permissions Workforce Directions Videos Competition Knowledge Wasting Time Threats Google Drive User Error Specifications Security Cameras Workplace Strategies Trend Micro 5G Internet Exlporer Software as a Service Fraud Meta Point of Sale Microchip Unified Communications Experience Username Managing Costs Amazon Google Docs Black Friday SSID Bitcoin Network Management Running Cable Tech Support User eCommerce Monitors Database Surveillance Virtual Assistant Outsource IT Google Wallet IT Technicians Virtual Machine Environment Media Cyber Monday Medical IT Windows 8 IP Address Laptop Websites Proxy Server Reviews Cookies Tactics Development Hotspot Transportation Small Businesses Drones

Blog Archive

2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015