A new threat named Sturnus has been identified by security experts at Threat Fabric, posing a risk to users of WhatsApp, Telegram, and Signal on Android devices. The Trojan, first discovered by MTI Security researchers, allows hackers to remotely control infected devices, potentially exposing private messages and enabling fraudulent transactions.
Sturnus is designed to bypass encrypted messaging platforms and can intercept decrypted content from device screens, compromising communication privacy. Although currently in the early stages of development, the threat remains significant, with the potential to impact a large number of Android users if successfully distributed by hackers.
According to Threat Fabric, Sturnus presents a sophisticated danger by combining various attack methods such as overlay-based credential theft, message monitoring, keylogging, screen streaming, remote control, and device administrator abuse. To mitigate the risk, users are advised to download apps only from the official Google Play Store, avoid sideloading software, and review app ratings before installation.
While Sturnus is a new threat, its advanced capabilities underline the importance of vigilance and cautious app usage to safeguard against potential cyber attacks.