Two newly discovered malicious Android applications have been used to target users of Brazil’s instant payment ecosystem. Malicious applications were designed to steal money of victims through user interaction and the original PIX application. PixStealer and MalRhino use Android’s accessibility service to perform malicious actions on the compromised devices. The apps have since been removed from the app store and have been removed by Check Point Research. They are the latest addition to a long list of mobile malware that leverages the permission to perpetrate data theft.”]
Source: https://thehackernews.com/2021/09/hackers-targeting-brazils-pix-payment.html