#AndroidMalware – Page 3

This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

July 26, 2024 by Xynik

July 26, 2024 at 09:36AM The GXC Team, a Spanish-speaking cybercrime group, has bundled phishing kits with malicious Android apps, creating a sophisticated phishing-as-a-service platform. They target users of Spanish banks and institutions worldwide, using smishing and social engineering techniques. The threat also involves AI-infused voice calling tools, AI-powered voice cloning, and adversaries-in-the-middle capabilities in … Read more

Hamster Kombat Players Threatened by Spyware & Infostealers

July 24, 2024 by Xynik

July 24, 2024 at 01:04PM Hamster Kombat, a popular mobile currency game with over 250 million users, is being targeted by malicious actors. Fake Android and Windows software are used to install spyware and other malware. Users searching for the game’s Telegram channel may come across channels distributing Android malware and spyware, posing a risk … Read more

Hamster Kombat’s 250 million players targeted in malware attacks

July 23, 2024 by Xynik

July 23, 2024 at 06:42PM Threat actors are exploiting the popularity of Hamster Kombat, a clicker mobile game, by distributing fake Android and Windows software to install spyware and malware. Players should obtain the game from its official Telegram channel or website to avoid scams. Additionally, caution is advised due to security concerns and potential … Read more

Houthi-Aligned APT Targets Mideast Militaries With ‘GuardZoo’ Spyware

July 10, 2024 by Xynik

July 10, 2024 at 01:16AM A threat actor linked to Houthi rebels in Yemen has been using a custom Android surveillanceware called “GuardZoo” to spy on military targets in the Middle East for five years. The malware is distributed through fake apps on WhatsApp and WhatsApp Business and has targeted military-related organizations. The majority of … Read more

New Medusa malware variants target Android users in seven countries

June 25, 2024 by Xynik

June 25, 2024 at 01:06PM The Medusa banking trojan, known as TangleBot, has resurfaced with lighter variants targeting countries in Europe and North America. The new activity involves SMS phishing and uses dropper applications to infect devices. The trojan has minimized its permissions, added new features, and is centralizing its operations for easier control. The … Read more

Rafel RAT targets outdated Android phones in ransomware attacks

June 24, 2024 by Xynik

June 24, 2024 at 02:44PM The ‘Rafel RAT’ malware targets outdated Android devices to conduct ransomware attacks, with over 120 campaigns detected by researchers. It primarily affects devices running Android versions 11 and older, and it can target various brands and models. Threat actors use fake apps to spread Rafel RAT, which can execute commands … Read more

Multiple Threat Actors Deploying Open-Source Rafel RAT to Target Android Devices

June 24, 2024 by Xynik

June 24, 2024 at 01:30AM Cyber espionage groups are using an Android remote administration tool, Rafel RAT, disguised as popular apps like Instagram and WhatsApp. This tool can perform various malicious activities like data theft and device manipulation. It has been used in cyber attacks targeting high-profile entities across multiple countries. It highlights the need … Read more

Ratel RAT targets outdated Android phones in ransomware attacks

June 22, 2024 by Xynik

June 22, 2024 at 03:14PM The ‘Ratel RAT’ is an open-source Android malware widely used by cybercriminals to target outdated devices, often using ransomware to demand payment on Telegram. Check Point researchers detected over 120 campaigns using Rafel RAT, with high-profile organizations being targeted, particularly in the United States, China, and Indonesia. It’s crucial to … Read more

Over 90 malicious Android apps with 5.5M installs found on Google Play

May 28, 2024 by Xynik

May 28, 2024 at 05:51PM Summary: Over 90 malicious Android apps, including Anatsa banking trojan, were found on Google Play, amassing over 5.5 million installations. Anatsa targets financial institutions, using deceptive decoy apps and multi-stage payload loading to evade detection. Though only 3% of total malicious downloads, Anatsa and Coper pose high-risk on-device fraud. Review … Read more

Fake Antivirus Websites Deliver Malware to Android and Windows Devices

May 24, 2024 by Xynik

May 24, 2024 at 09:51AM Threat actors are using fake websites posing as legitimate antivirus solutions like Avast, Bitdefender, and Malwarebytes to distribute malware targeting Android and Windows devices. The malware can steal sensitive information. The firms also observed a new Android banking trojan called Antidot, posing as a Google Play update, to facilitate information … Read more