An Android banking trojan has returned with improvements which allow it to record the screens of infected devices while also adding new techniques that help the malware remain hidden from victim.

Researchers at Fortinet have uncovered a new version of the well known BianLian Trojan that suggests that those behind it are still providing regular updates to the malware.

If a user downloads one of the malicious apps used to deliver BianLian, the first thing the application does is repeatedly ask for permission to use accessibility services and the additional functions this provides

Along with read, send and receive text messages,monitor and make calls, lock the screen and attack banking apps, the new version of BianLian adds a screencast module, allowing the malware to record the screen of the device, a functionality that could allow attackers to monitor and store what’s viewed by the user

Read full article here