A report from the UK on September 1 said that a new malware called "Infamous Chisel" backed by Russia appeared and attacked applications on Android phones, especially cryptocurrency wallets.
According to the UK's National Cyber Security Center (NCSC), Infamous Chisel works by stealing data from applications on users' phones. The malware was identified as siphoning data from cryptocurrency wallets such as Binance App, Coinbase Wallet and Trust Wallet, as well as from Brave and Opera browsers, which have cryptocurrency-related features.
In addition, the malware also attacks applications such as PayPal, Dropbox, Firefox, Telegram, Skype, WhatsApp and many others. According to NCSC, Infamous Chisel originated from a hacker group sponsored by the Russian government called "Sandworm". This group also carries out attacks and is using Infamous Chisel to steal information related to the Ukrainian military.
However, the report does not specify whether the stolen information could allow attackers to steal cryptocurrency. Cyber security organizations from the US, UK, New Zealand, Canada and Australia are aware of this threat and are monitoring the situation.