Malware uses Twitter as backup C&C infrastructure to prevent losing bots when its command and control server is knocked offline. The Red Alert 2.0 is currently targeting victims from more than 60 banks and social media apps across the world and works on Android 6.0 (Marshmallow) and previous versions. Malware blocks incoming calls associated with banks and financial associations, and uses Twitter to prevent warnings of a compromised account to be received by the victims from their associated banks. The Trojan is being rented on many dark websites for $500 per month.
Source: https://thehackernews.com/2017/09/android-banking-trojan.html