Anatsa Banking Trojan Targeting Users in US, UK, Germany, Austria, and Switzerland
Anatsa, also known by the name TeaBot and Toddler, first emerged in early 2021, and has been observed masquerading as seemingly innocuous utility apps like PDF readers, QR code scanners, and two-factor authentication (2FA) apps on Google Play to siphon users’ credentials. It has since become one of the most prolific banking malware, targeting nearly 600 financial institutions across the world.