A new variant of the TrickMo Android malware employs Device Take Over (DTO) capabilities to remotely control infected devices, specifically targeting and manipulating banking, fintech, cryptocurrency wallet, and authentication applications to perform fraudulent transactions. The article does not provide a CVSS score, specific affected or fixed application versions, or a recommended workaround.
2026-05-11 (Back to Inventory) New TrickMo Variant: Device Take Over malware targeting Banking, Fintech, Wallet & Auth apps Author(s): ThreatFabric Organization: ThreatFabric apk.trickmo Open article directly Open article on Archive.org Related Articles 2025-11-20 ⋅ ThreatFabric ⋅ ThreatFabric Sturnus: Mobile Banking Malware bypassing WhatsApp, Telegram and Signal Encryption Sturnus 2025-10-28 ⋅ ThreatFabric ⋅ ThreatFabric New Android Malware Herodotus Mimics Human Behaviour to Evade Detection 2025-09-09 ⋅ ThreatFabric ⋅ ThreatFabric The Rise of RatOn: From NFC heists to remote control and ATS RatOn