The Hacker News
SecuriDropper: New Android Dropper-as-a-Service Bypasses Google's Defenses
SecuriDropper, a sneaky malware delivery service, outsmarts Google's latest security measures.
Bleeping Computer
Cybercrime service bypasses Android security to install malware
A new dropper-as-a-service (DaaS) named 'SecuriDropper' has emerged, using a method that bypasses Android 13's 'Restricted Settings' to install malware on devices and grant them access to the Accessibility Services.
The Hacker News
Hook: New Android Banking Trojan That Expands on ERMAC's Legacy
Discover the evolution of Android trojans - 'Hook' inherits its powers from 'ERMAC.' How does it outperform its predecessor? Read on.
The Hacker News
PixPirate: New Android Banking Trojan Targeting Brazilian Financial Institutions
PixPirate: This new Android banking trojan is targeting financial institutions in Brazil using the PIX payments platform.
Bleeping Computer
Over 1,800 Android phishing forms for sale on cybercrime market
A threat actor named InTheBox is promoting on Russian cybercrime forums an inventory of 1,894 web injects (overlays of phishing windows) for stealing credentials and sensitive data from banking, cryptocurrency exchange, and e-commerce apps
Cyber Security News
Hook Banking Trojan Infect Stored Files in Devices & Create Remote Session
A new Android malware known as 'Hook' has surfaced in the cybercrime market, and this malware is now selling it to potential buyers.
Bleeping Computer
New 'Hook' Android malware lets hackers remotely control your phone
A new Android malware named 'Hook' is being sold by cybercriminals, boasting it can remotely take over mobile devices in real-time using VNC (virtual network computing).
The Hacker News
Android Users Beware: New Hook Malware with RAT Capabilities Emerges
Another malware for rent has emerged - Hook with RAT capabilities. The threat actor behind BlackRock and ERMAC trojans is at it again.
Cyber Security News
New Dark Web Website Allows Hackers to Embed Malware to Legitimate Android Apps
ThreatFabric's researchers found ‘Zombinder’, a third-party darknet service that was used to bind malware payloads to legitimate Android applications.
Security Affairs
Zombinder APK binding service used in multiple malware attacks
Zombinder is a third-party service on darknet used to embed malicious payloads in legitimate Android applications. While investigating a new malware campaign targeting Android and Windows systems, researchers at Threat Fabric discovered a darknet service, dubbed Zombinder, used to embed malicious payloads in legitimate Android apps. The campaign involved the Ermac Android banking Trojan along […]
The Hacker News
Researchers Uncover Darknet Service Allowing Hackers to Trojonize Legit Android Apps
Researchers have discovered a new hybrid malware campaign that targets both Android and Windows operating systems, allowing it to expand its pool of v
Bleeping Computer
New 'Zombinder' platform binds Android malware with legitimate apps
A darknet platform dubbed 'Zombinder' allows threat actors to bind malware to legitimate Android apps, causing victims to infect themselves while still having the full functionality of the original app to evade suspicion.
Cyber Security News
Largest Mobile Malware Darkweb Marketplace Discovered Having Over 1900 Injection Scripts
The "InTheBox" marketplace, which recently emerged on the Dark Web and is intended only for operators of mobile malware, has been uncovered by the Resecurity Hunter team.
The Hacker News
Darknet's Largest Mobile Malware Marketplace Threatens Users Worldwide
Cybersecurity researchers have shed light on InTheBox, the biggest darknet bazaar catering to mobile malware operators
Security Affairs
Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web
Resecurity has identified a new underground marketplace in the Dark Web oriented towards mobile malware developers and operators. “In the Box” dark web marketplace is leveraged by cybercriminals to attack over 300 financial institutions (FIs), payment systems, social media and online-retailers in 43 countries Resecurity, the California-based cybersecurity company protecting major Fortune 500 companies, has identified a new underground marketplace in […]
Bleeping Computer
Typosquat campaign mimics 27 brands to push Windows, Android malware
A massive, malicious campaign is underway using over 200 typosquatting domains that impersonate twenty-seven brands to trick visitors into downloading various Windows and Android malware.
Security Affairs
17 Android Apps on Google Play Store, dubbed DawDropper, were serving banking malware
The researchers discovered over a dozen Android Apps on Google Play Store, collectively dubbed DawDropper, that were dropping Banking malware. Trend Micro researchers uncovered a malicious campaign that leveraged 17 seemingly harmless Android dropper apps, collectively tracked as DawDropper, on the Google Play Store to distribute banking malware. The DawDropper apps are masqueraded as productivity and utility apps such […]
The Hacker News
Over a Dozen Android Apps on Google Play Store Caught Dropping Banking Malware
Over a dozen Android apps distributed via the Google Play Store have been caught infecting users' devices with banking malware.
Trend Micro
Examining New DawDropper Banking Dropper and DaaS on the Dark Web
In this blog post, we discuss the technical details of a new banking dropper that we have dubbed DawDropper, give a brief history of banking trojans released in early 2022 that use malicious droppers, and elaborate on cybercriminal activities related to DaaS in the deep web.
Latest Hacking News
New ERMAC 2.0 Trojan Variant Actively Targeting Android Users
Researchers have discovered a new malware variant of the Android banking trojan ERMAC, identified as ERMAC 2.0. This new malware variant impersonates various apps to steal users’ credentials and crypto wallets. ERMAC 2.0 Android Trojan Variant
ThreatPost
International Authorities Take Down Flubot Malware Network
The info-stealing trojan used SMS messages and lifted contact credentials to spread with unprecedented speed across Android devices globally since December 2020.
The Hacker News
Latest Mobile Malware Report Suggests On-Device Fraud is on the Rise
As the mobile threat landscape evolves in 2022, new and existing banking trojans are increasingly targeting Android devices to perform on-device fraud
Security Affairs
ERMAC 2.0 Android Banking Trojan targets over 400 apps
A new version of the ERMAC Android banking trojan is able to target an increased number of apps. The ERMAC Android banking trojan version 2.0 can target an increasing number of applications, passing from 378 to 467 target applications to steal account credentials and crypto-wallets. ERMAC was first spotted by researchers from Threatfabric in July […]
Bleeping Computer
New ERMAC 2.0 Android malware steals accounts, wallets from 467 apps
The ERMAC Android banking trojan has released version 2.0, increasing the number of applications targeted from 378 to 467, covering a much wider range of apps to steal account credentials and crypto wallets.
The Hacker News
New Android Banking Trojan Spreading via Google Play Store Targets Europeans
Researchers discover a new Android banking trojan that spread via the Google Play Store and targets customers of dozens of European banks.