A new, highly sophisticated Android malware named “Albiriox” has launched as a Malware-as-a-Service (MaaS). It targets over 400 banking, crypto, and fintech applications. Albiriox specializes in “On-Device Fraud” (ODF), allowing attackers to remotely control the victim’s device to perform fraudulent transactions.
Business Impact
This malware poses a severe threat to mobile banking and corporate BYOD environments. By automating on-device fraud, it bypasses standard device fingerprinting and MFA checks, as the transaction appears to originate from the victim’s legitimate, trusted device.
Why It Happened
Albiriox abuses Android’s Accessibility Services to gain full control over the user interface. It is distributed via malicious apps that trick users into granting these high-level permissions, enabling the malware to silently interact with other apps.
Recommended Executive Action
Enforce strict Mobile Application Management (MAM) policies to block app sideloading and restrict Accessibility Service usage on managed devices. Deploy mobile security solutions that can detect and block known malware and suspicious permission requests.
Hashtags: #Albiriox #Android #Malware #BankingTrojan #MobileSecurity #Fraud #MaaS #CyberSecurity