A new type of mobile banking malware has been discovered abusing Android’s accessibility features to exfiltrate sensitive data from financial applications. Called “EventBot” by Cybereason researchers, the malware is capable of targeting over 200 different financial apps, including banking, money transfer services, and crypto-currency wallets such as Paypal Business, Revolut, Barclays, CapitalOne, HSBC, Santander, TransferWise, and Coinbase. EventBot can read from external storage, send and receive SMS messages, run in the background, and launch itself after system boot.
Source: https://thehackernews.com/2020/04/android-banking-keylogger.html