“The malware targets a safety feature in Android devices and then alters apps so it can read phone screens, disable 2FA, and steal victims' funds.”
“Snowblind exploits the Linux kernel feature "seccomp" to bypass built-in security triggers. It then co-opts accessibility features to view victims' screens remotely and can steal banking login information or even interrupt banking app sessions to make illegal or unwanted transactions.”
