The BianLian banking Trojan has been upgraded with two new modules designed to record the screens of infected Android devices and create a SSH server for camouflaging its communication channels. The extra components allow the malware to send text messages, run arbitrary USSD codes, lock the screens, inject push notifications and perform overlay attacks that enable it to steal banking credentials. The number of Android users targeted by cybercriminals with banking malware saw an alarming 300% increase in 2018 as reported by Kaspersky Lab.
Source: https://www.bleepingcomputer.com/news/security/bianlian-android-banking-trojan-upgraded-with-screen-recorder/