Newly discovered code resembles the Kazuar backdoor and the Sunshuttle second-stage malware distributed by Nobelium in the SolarWinds supply-chain attacks.
https://threatpost.com/tomiris-backdoor-solarwinds-malware/175091/
GriftHorse Money-Stealing Trojan Takes 10M Android Users for a Ride
-
The mobile malware has fleeced hundreds of millions of dollars from victims globally, using sophisticated techniques.
https://threatpost.com/grifthorse-money-stealing-trojan-android/175130/