#AndroidSecurity

Android Botnet ‘ToxicPanda’ Bashes Banks Across Europe, Latin America

by

November 5, 2024 at 04:20PM Researchers have identified a new banking botnet named ToxicPanda, linked to Chinese-speaking threat actors, which targets over 1,500 devices across various countries. This malware exploits Android vulnerabilities for money transfers, undermining multifactor authentication. Cleafy emphasizes the necessity for improved security measures and real-time detection to counter such threats. ### Meeting … Read more

Google fixes two Android zero-days used in targeted attacks

by

November 5, 2024 at 09:34AM Google’s November security updates fixed two actively exploited Android zero-day vulnerabilities, CVE-2024-43047 and CVE-2024-43093, among 51 flaws. The high-severity issues affect Qualcomm components and Android Framework, potentially linked to spyware attacks. Users are urged to update their devices for improved security, especially those running outdated versions. ### Meeting Takeaways: November … Read more

Google Patches Two Android Vulnerabilities Exploited in Targeted Attacks

by

November 5, 2024 at 07:04AM Google has addressed two vulnerabilities in the latest Android security update, noting that they were exploited in limited, targeted attacks. The company emphasizes the importance of applying the update to enhance device security. **Meeting Takeaways:** 1. **Vendor Alert:** Google has issued a warning regarding the exploitation of two vulnerabilities in … Read more

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System

by

November 4, 2024 at 10:58PM Google has identified a security flaw in Android, CVE-2024-43093, which is being actively exploited and allows unauthorized access to sensitive directories. Another flaw, CVE-2024-43047, in Qualcomm chipsets, is also exploited but is now patched. The exact exploitation methods and potential connections between the two vulnerabilities remain unclear. ### Meeting Takeaways … Read more

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

by

November 4, 2024 at 01:45AM Researchers have identified a new version of the Android malware FakeCall, which employs voice phishing to deceive users into sharing personal information. It gains control of devices, intercepts calls, and manipulates users into contacting fraudulent numbers. Enhanced security measures and Google’s initiatives aim to combat this sophisticated threat. ### Meeting … Read more

Vishing, Mishing Go Next-Level With FakeCall Android Malware

by

October 30, 2024 at 12:36PM A new variant of the FakeCall malware enhances vishing and mishing attacks on Android devices, allowing attackers greater control and monitoring over compromised phones. It integrates with Android’s Accessibility Service for extensive user interface manipulation, making detection difficult. Experts emphasize the need for advanced security and user education to combat … Read more

Android malware “FakeCall” now reroutes bank calls to attackers

by

October 30, 2024 at 10:58AM The new FakeCall malware for Android hijacks users’ outgoing calls to banks, redirecting them to attackers. It features advanced voice phishing tactics, realistic interfaces, and can capture audio/video. Recent improvements include additional control functionalities and commands, making it a more dangerous banking trojan. Users are cautioned against installing APKs directly. … Read more

FakeCall Android Trojan Evolves with New Evasion Tactics and Expanded Espionage Capabilities

by

October 30, 2024 at 09:03AM The FakeCall Android banking trojan has upgraded its evasion tactics and enhanced surveillance abilities, increasing risks for banks and enterprises. **Meeting Notes Takeaways:** 1. **Current Threat Overview:** The FakeCall Android banking trojan has evolved, incorporating advanced evasion tactics. 2. **Increased Risks:** The new capabilities of the trojan heighten risks for … Read more

Google brings better bricking to Androids, to curtail crims

by

October 7, 2024 at 11:04PM Google has globally rolled out three new Android features to deter phone theft. The Theft Detection Lock activates if a phone is taken and moves at high speed, the Offline Device Lock works if the device is offline for a long time, and Remote Lock allows users to lock stolen … Read more

Google Blocks Unsafe Android App Sideloading in India for Improved Fraud Protection

by

October 7, 2024 at 05:57AM Google is piloting a new security initiative in India to automatically block unsafe Android apps from being sideloaded, following successful tests in Singapore, Thailand, and Brazil. The program aims to protect users from malicious apps obtained from sources other than the Google Play Store, highlighting Google’s commitment to mobile security. … Read more