Attacks involved five botnets to facilitate the distribution of malicious apps with the updated Medusa trojan, which added five new commands allowing app uninstallation, “Drawing Over” permission requests, black screen overlays, screenshot capturing, and user secret updating while omitting 17 old commands, according to a report from Cleafy.

Source: SC Magazine