币界网报道：The "Godfather" malware has emerged as a significant threat to global financial institutions, targeting over 400 banking and cryptocurrency exchange apps across 16 countries. This sophisticated Android-based trojan mimics legitimate banking apps to steal login credentials and two-factor authentication codes, primarily focusing on users in the U.S., U.K., Germany, France, and Turkey. Security researchers at Group-IB discovered that the malware displays fake login pages when users attempt to access financial apps, capturing sensitive data in real-time. Notably, Godfather shares code similarities with the infamous Anubis malware but includes enhanced evasion techniques, such as checking for emulator environments and virtual machines. The malware's operators have been actively updating its target list since 2021, with recent versions adding support for 215 cryptocurrency wallets and exchanges, including Binance, Trust Wallet, and Coinbase. Financial institutions are urging customers to download apps only from official stores and enable additional security measures like biometric authentication. Cybersecurity experts warn that Godfather represents an evolution in mobile banking threats, combining social engineering with technical sophistication to bypass traditional security defenses. The malware's infrastructure suggests possible ties to Russian-speaking cybercriminals, though its exact origins remain under investigation.