Svpeng is one of the most notorious banking Trojans because it receives regular upgrades in order to stay fresh and keep infecting victims. It has just been upgraded again with new keylogger functionality in a bid to steal any text entered on the phone, including usernames and passwords — and it does so by exploiting accessibility services, the Android function designed to help people with disabilities use their phone.

Read full news article on ZDNet