Researchers have identified 40 new variants of the TrickMo banking trojan, which uses a fake lock screen to steal Android PINs. The malware, exploiting accessibility permissions, can intercept one-time passwords, record screens, and present phishing overlays to capture user credentials. With at least 13,000 victims reported, primarily in Canada and several other countries, users are advised to avoid downloading unknown APKs and ensure Google Play Protect is active on their devices.
Relevant URL: https://www.bleepingcomputer.com/news/security/trickmo-malware-steals-android-pins-using-fake-lock-screen/amp/