A Netherlands security research firm has uncovered a new Android dropper app, dubbed Vultur, that delivers legitimate functionality, then silently shifts into malicious mode when it detects banking and other financial activities.
Vultur, found by ThreatFabric, is a keylogger that captures financial institution credentials by piggybacking on the current banking session and stealing funds right away — invisibly. And just in case the victim realizes what is happening, it locks down the screen.
(Note: Always have your bank's phone number so that a direct call to a local branch might save your money — and keep the number on paper. If it's on your phone and the phone is locked, you're out of luck.)