Brokewell is a new family of mobile malware, which threat analysts believe is a significant risk for mobile banking. It has the ability to take over a user’s data and remotely control devices equipped with the malware. Brokewell is also equipped with “accessibility logging,” which can track every display and touch on an installed device.
The malware can appear as a fake software update page which unwitting users will click on believing it to be genuine. Any application is then vulnerable to data compromise as Brokewell logs every event on the downloaded device.