Android users are pretty used to endless alerts about bugs and secuity threats but there’s a new attack that is definitely not something anyone wants to fall victim too. The new malware, called Albriox, has begun infecting some devices in parts of Europe and those unlucky enough to install it could find that full control of their devices will be handed over to cyber crooks. Once infected, this then allows hackers to commit on-device fraud and even steal money from banking apps.

Albroix also offers other worrying capabilities such as so-called overlay attacks which show fake login windows. Thieves can then harvest personal data plus view login credentials and passwords.

Blank-screen masking can also be switched on. This shows users a fake blank display whilst criminals perform task in the background.

“Researchers have analyzed a new Android malware family called Albiriox which is showing signs of developing rapidly and already has strong capabilities,” explained Malwarebytes.

“Albiriox is an Android Remote Access Trojan (RAT) and banking Trojan built for on-device fraud, where criminals perform transactions directly on the victim’s phone instead of just stealing passwords. It has a structured architecture with loaders, command modules, and control panels tailored to financial apps and cryptocurrency services worldwide.”

Android users are now being urged to watch out for any apps that appear to act strangely or weren’t installed by the user. It’s also a good idea to check for certain keywords.

Malwarebytes says to watch out for any apps that include generic names such as “utility,” “security,” “retailer,” or “investment” that you don’t remember installing from the official Play Store, or run a full system scan with a trusted Android anti-malware solution.

Other advice from Malwarebytes includes only install apps from official app stores whenever possible and avoid installing apps promoted in links in SMS, email, or messaging apps.

Before installing finance‑related or retailer apps, it’s a good idea to verify the developer name, number of downloads, and user reviews rather than trusting a single promotional link.

Scrutinise permissions is another yop tip. Does an app really need the permissions it’s requesting to do the job you want it to do? Especially if it asks for accessibility, SMS, or camera access.

Keep Android, Google Play services, and all banking or crypto apps up to date so you get the latest security fixes.

Finally, always enable multi-factor authentication on banking and crypto services, and prefer app‑based or hardware‑based codes over SMS where possible. And if possible, set up account alerts for new payees, large transfers, or logins from new devices.