#android-malware

[ follow ]
#banking-trojan #cybersecurity #google-play-store #playpraetor #nfc-relay #overlay-attacks #automated-transfers
fromThe Hacker News
5 days ago

RatOn Android Malware Detected With NFC Relay and ATS Banking Fraud Capabilities

A new Android malware called RatOn evolved from a basic tool capable of conducting Near Field Communication ( NFC) attacks to a sophisticated remote access trojan with Automated Transfer System ( ATS) capabilities to conduct device fraud. "RatOn merges traditional overlay attacks with automatic money transfers and NFC relay functionality - making it a uniquely powerful threat," the Dutch mobile security company said in a report published today. The banking trojan comes fitted with account takeover functions targeting cryptocurrency wallet applications like MetaMask, Trust, Blockchain.com, and Phantom, while also capable of carrying out automated money transfers abusing George Česko, a bank application used in the Czech Republic.
Information security
fromThe Hacker News
1 week ago

Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans

The Dutch mobile security firm said the change is driven by recent security protections that Google has piloted in select markets like Singapore, Thailand, Brazil, and India to block sideloading of potentially suspicious apps requesting dangerous permissions like SMS messages and accessibility services, a heavily abused setting to carry out malicious actions on Android devices. "Google Play Protect's defences, particularly the targeted Pilot Program, are increasingly effective at stopping risky apps before they run," the company said. "Second, actors want to future-proof their operations."
Information security
Information security
fromBleepingComputer
2 weeks ago

Brokewell Android malware delivered through fake TradingView ads

Cybercriminals used fake Meta ads offering a free TradingView Premium Android app to distribute Brokewell malware targeting cryptocurrency assets and device credentials.
fromSecuritymagazine
2 weeks ago

Malicious Actors Spread Malware Via Meta's Advertising System

Bitdefender warns that a Meta malvertising campaign has expanded to Android phones. The research discovered malicious ads that offer a free TradingView Premium app for Android. Rather than leading users to a legitimate software, however, these ads take victims to a sophisticated crypto-stealing trojan, which the research as "an evolved version of the Brokewell malware." The research's most recent analysis revealed the campaign remains active and has leveraged at least 75 malicious ads since mid-July.
Information security
Information security
fromTheregister
2 weeks ago

Malware-ridden apps made it into Google's Play Store

Over 19 million Google Play downloads included malware, including an updated Anatsa trojan that evades detection and targets hundreds of financial institutions globally.
Information security
fromDataBreaches.Net
3 weeks ago

Google Deletes Millions of Android Apps After Malware Discovery - DataBreaches.Net

Google removed Play Store apps containing Anatsa (TeaBot) Android banking malware stealing credentials, keylogging, enabling fraud, targeting 831 institutions, with over 19 million downloads.
#cybersecurity
more#cybersecurity
Cryptocurrency
fromThe Hacker News
3 months ago

Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets

Crocodilus Android banking trojan is actively targeting users, expanding its geographic scope and employing advanced obfuscation techniques to evade detection.
fromThe Hacker News
5 months ago

PlayPraetor Reloaded: CTM360 Uncovers a Play Masquerading Party

Identified over 16,000 URLs related to PlayPraetor attacks, indicating a globally coordinated campaign targeting Android users with sophisticated deceit and malware.
Privacy professionals
[ Load more ]