According to BlockBeats, SlowMist has issued a security alert that the Android banking Trojan Crocodilus is attacking global cryptocurrency users and banking applications after an upgrade. Major threats include spreading through fake browser updates in Facebook ads, using overlay attacks to steal login credentials, extracting cryptocurrency wallet mnemonic phrases and private keys, and injecting fake bank support numbers into contact lists. The malware-as-a-service is available for rent, costing $100-300 per attack. Users are reminded to avoid unknown app updates and ad links.