Necro malware continues to haunt side-loaders of dodgy Android mods

September 23, 2024 at 05:38PM The Necro trojan is targeting Android users, potentially affecting millions. Kaspersky discovered the Necro campaign in 2019, exposing numerous devices to malware. Popular apps like Wuta Camera and Max Browser were affected, prompting Google to take action. Malicious modifications for apps like WhatsApp and children’s games are also concerning. Kaspersky … Read more

TrickMo Android Trojan Exploits Accessibility Services for On-Device Banking Fraud

September 13, 2024 at 08:15AM Cybersecurity researchers have uncovered a new variant of the Android banking trojan TrickMo, designed to evade detection and capture banking credentials. The malware, linked to the TrickBot e-crime gang, features capabilities like screen recording, keystroke logging, and abusing accessibility services for malicious actions. The trojan’s command-and-control server exposed 12 GB … Read more

1.3 Million Android TV Boxes Infected by Vo1d Malware

September 13, 2024 at 06:21AM A newly discovered Android malware, Vo1d, has infected 1.3 million TV boxes running older Android versions. The backdoor malware can fetch and install additional software, exploiting system vulnerabilities. It poses as legitimate OS components and targets countries worldwide. Doctor Web suspects attacks via unofficial firmware or intermediate malware. Google has … Read more

New Android Malware ‘Ajina.Banker’ Steals Financial Data and Bypasses 2FA via Telegram

September 12, 2024 at 01:12PM Bank customers in Central Asia are under threat from a new Android malware named Ajina.Banker, aimed at stealing financial information and thwarting two-factor authentication. The malware is distributed through Telegram channels and targets countries such as Armenia, Azerbaijan, and Russia. The attackers use localized promotions and themed messages to maximize … Read more

SpyAgent Android malware steals your crypto recovery phrases from images

September 6, 2024 at 11:29AM SpyAgent, a new Android malware, uses OCR technology to steal cryptocurrency recovery phrases from mobile screenshots, compromising wallet security. McAfee uncovered the malware in 280 non-Google Play APKs distributing via SMS or malicious social media. It targets South Korea and may expand to the UK, with a possible iOS variant … Read more

SpyAgent Android malware steals crypto recovery phrases from images

September 6, 2024 at 11:22AM A new Android malware called SpyAgent utilizes OCR to extract cryptocurrency wallet recovery phrases from images stored on mobile devices. Based on the meeting notes, it seems that a new Android malware called SpyAgent has been identified. This malware uses optical character recognition (OCR) technology to extract cryptocurrency wallet recovery … Read more

New Android Malware NGate Steals NFC Data to Clone Contactless Payment Cards

August 26, 2024 at 12:54AM Researchers have discovered new Android malware, NGate, aimed at stealing contactless payment data from physical credit and debit cards to conduct fraudulent operations. Targeting banks in Czechia, the attack involves social engineering and SMS phishing to trick users. NGate prompts victims to enter sensitive financial details and instigates an NFC … Read more

NFC Traffic Stealer Targets Android Users & Their Banking Info

August 22, 2024 at 05:08PM A new Android malware called NGate has emerged, capable of cloning contactless payment data from credit and debit cards and sending it to an attacker’s device for fraudulent transactions. Initially based on NFCgate, this malware leverages phishing and social engineering to steal banking information and execute fraudulent ATM transactions. Based … Read more

New NGate Android malware uses NFC chip to steal credit card data

August 22, 2024 at 01:05PM NGate, a new Android malware, steals money from payment cards through NFC data relay. It tricks victims into installing malicious PWAs and WebAPKs, stealing banking credentials. Once installed, it uses NFC to capture and relay card data to the attacker’s device. It can also obtain the card PIN, posing a … Read more

Chameleon Banking Trojan Makes a Comeback Cloaked as CRM App

August 7, 2024 at 01:43PM The Chameleon Android banking Trojan has resurfaced with new security-bypass features, posing as a CRM application to target employees in the hospitality sector and businesses in Canada and Europe. The malware’s advanced abilities to bypass Android 13+ restrictions and masquerade as security applications signify a growing risk to organizations and … Read more