A new Android banking trojan named Rokarolla is actively targeting 217 banking and cryptocurrency applications through an extensive command set. Security researchers have identified the threat as a significant risk to mobile users.
Rokarolla operates as a banking trojan with 137 distinct commands, giving attackers granular control over compromised devices. The malware targets both traditional financial institutions and cryptocurrency platforms, indicating a broad attack surface across the digital finance ecosystem.
The threat leverages standard Android exploitation techniques to intercept sensitive user data, including credentials and transaction details. Its modular design allows operators to push new commands and functionality to infected devices without requiring updates.
Security experts recommend users keep Android devices updated with the latest patches, install banking apps only from official app stores, and enable two-factor authentication on financial accounts. Antivirus solutions capable of detecting trojan variants provide additional protection.
The discovery of Rokarolla underscores the ongoing evolution of mobile malware threats targeting financial services, with attackers continuously expanding targeting capabilities and command sets to maximize operational effectiveness.
Kodak has confirmed a security breach after the ShinyHunters extortion gang gained access to company data. The imaging company is working with external cybersecurity experts to investigate the incident.
Cyber crimes now account for roughly one-third of all recorded crimes in some Asian countries, with scams emerging as the most prevalent and costly category, according to a new Interpol report.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies patch a maximum-severity vulnerability in the Widget Factory Joomla Content Editor (JCE) plugin by Friday. The flaw is currently being exploited in active attacks.