September 19, 2024 at 10:30AM A new malware called SambaSpy targets Italian users through phishing. It uses HTML attachments or links to deploy a multi-functional RAT payload. The attack chains involve redirecting to a legitimate invoice or a malicious web server. SambaSpy can perform various functions, such as managing files, remote desktop, keylogging, and stealing … Read more
September 5, 2024 at 05:41AM Cybercriminals are targeting Latin American users with a rise in phishing scams, deploying banking Trojans like Mekotio and BBTok. Mekotio’s latest variant suggests a broadening of targets, while BBTok evades detection by abusing MSBuild.exe. Sophisticated phishing attacks are compromising financial systems, prompting the urgent need for enhanced cybersecurity measures and … Read more
May 10, 2024 at 07:00AM Malicious Android apps posing as popular services like Google, Instagram, and WhatsApp are stealing user credentials. These apps gain control over devices, allowing for unauthorized actions like data theft and malware deployment. Social engineering campaigns and phishing URLs are also being used to propagate Android malware, leading to increased attacks … Read more
April 4, 2024 at 11:30AM Cyber threats like viruses, trojans, ransomware, etc., are becoming increasingly advanced, posing significant risks. Recent high-profile attacks, including StripedFly, Android banking trojans, and the breach at the Dutch Ministry of Defense, underscore the need for robust security measures. Strategies such as anti-virus software, employee training, and automation are crucial in … Read more
February 8, 2024 at 04:23PM A new banking Trojan coined “Coyote” is targeting 61 online banking apps, spreading mainly in Brazil. Identified by Kaspersky, it’s armed with advanced components and could pose global threats. With history pointing to expansion and evolution, security teams need to be vigilant. “Coyote” is using unique tactics to avoid detection … Read more
January 30, 2024 at 12:30PM Brazilian law enforcement arrested several operators of the Grandoreiro malware in a recent operation. Slovak cybersecurity firm ESET assisted in uncovering a design flaw in Grandoreiro’s network protocol. The banking trojan targets Latin American countries and has the ability to steal data and control infected devices remotely. The operation aimed … Read more
December 14, 2023 at 02:47PM In 2023, ten new Android banking malware families emerged, targeting 985 bank and fintech/trading apps across 61 countries. Specific trends include automated transfer systems, social engineering, live screen-sharing, and offering the malware as a subscription. Notably, trojans are expanding beyond banking to target social media, messaging, and personal data. Staying … Read more
November 6, 2023 at 10:06AM Researchers have discovered a new dropper-as-a-service (DaaS) for Android called SecuriDropper that bypasses Google’s security restrictions and delivers malware. Dropper malware on Android is a lucrative business for threat actors, allowing them to install malicious payloads on compromised devices. SecuriDropper disguises itself as a harmless app and uses different Android … Read more