This sneaky new Android malware can hide in plain sight – and it’s all thanks to virtualization

FjordPhantom, a new Android malware, uses virtualisation to avoid detection and steal money from users’ bank accounts. Primarily targeting users in Southeast Asia, the malware is spread through phishing emails, SMS and chat apps. Cybersecurity researchers Promon note that it operates by running legitimate banking apps alongside malicious code in a virtual environment, circumventing Android’s security protections and code tampering detection measures. Promon recommends only downloading apps from trusted sources to avoid such threats.