Tag Android

New Android Trojan ‘SoumniBot’ Outwits Detection with Smart Techniques

A new Android Trojan, named SoumniBot, has been uncovered, specifically targeting users in South Korea by exploiting vulnerabilities in the Android manifest extraction and parsing procedures. This malware is distinctive for its unconventional methods of evasion, particularly through the obfuscation of the Android manifest, as revealed by Kaspersky researcher Dmitry…

Read MoreNew Android Trojan ‘SoumniBot’ Outwits Detection with Smart Techniques

Popular Android Apps, Including Xiaomi and WPS Office, Exposed to File Overwrite Vulnerability

Several widely-used Android applications on the Google Play Store have been identified as vulnerable due to a path traversal vulnerability known as the “Dirty Stream” attack. This flaw could enable malicious applications to overwrite files within the affected apps’ home directories. According to Dimitrios Valsamaras from the Microsoft Threat Intelligence…

Read MorePopular Android Apps, Including Xiaomi and WPS Office, Exposed to File Overwrite Vulnerability

Arid Viper Targets Arabic Android Users with Spyware Masquerading as a Dating App

The cyber threat group known as Arid Viper, also referred to as APT-C-23 or Desert Falcon, has emerged as the perpetrator behind a recent Android spyware campaign aimed at Arabic-speaking individuals. This sophisticated operation involves the distribution of a fake dating application that is designed to infiltrate users’ devices, extracting…

Read MoreArid Viper Targets Arabic Android Users with Spyware Masquerading as a Dating App

Kremlin-Backed Hackers Unveil New Windows and Android Malware Targeting Ukrainian Adversaries

Kremlin-Backed Malware Targets Ukrainian Military Recruits Recent findings from Google researchers reveal the emergence of a sophisticated operation allegedly backed by the Kremlin, aimed at targeting individuals considering enlistment in the Ukrainian military. This disturbing campaign utilizes information-stealing malware designed for both Windows and Android platforms, primarily disseminated through Telegram…

Read MoreKremlin-Backed Hackers Unveil New Windows and Android Malware Targeting Ukrainian Adversaries

Google Alerts Users to Pixel Firmware Security Vulnerability Exploited as Zero-Day

Google Alerts Users to Exploited Vulnerability in Pixel Firmware Google has issued a warning regarding a security vulnerability affecting Pixel Firmware that is currently being exploited in the wild. Labeled as a zero-day flaw, this high-severity issue, identified by the code CVE-2024-32896, is categorized as an elevation of privilege vulnerability.…

Read MoreGoogle Alerts Users to Pixel Firmware Security Vulnerability Exploited as Zero-Day

Phone Location Tracking: Why It’s Out of Control and How You Can Take Action

Title: Analyzing App Location Permissions Amid Privacy Concerns In a growing focus on privacy, both Android and iOS platforms offer users insight into app permissions related to location data. Users are now able to manage their choices regarding whether an application can access their location consistently, only when in use,…

Read MorePhone Location Tracking: Why It’s Out of Control and How You Can Take Action

Kurdish Websites Targeted in Watering Hole Attack Distributing Malicious APKs and Spyware

In a recent cybersecurity incident, approximately 25 websites associated with the Kurdish minority have fallen victim to a sophisticated watering hole attack designed to collect sensitive information over an extended period of time, reportedly lasting more than 18 months. French cybersecurity firm Sekoia disclosed the details of the campaign, labeled…

Read MoreKurdish Websites Targeted in Watering Hole Attack Distributing Malicious APKs and Spyware

Chinese Hackers Attack Taiwan and U.S. NGOs Using MgBot and MACMA Malware

A Beijing-linked state-sponsored hacking group known as Daggerfly has targeted organizations in Taiwan and a U.S. non-governmental organization (NGO) operating in China, deploying an upgraded suite of malware tools in its most recent campaign. This sophisticated operation highlights the group’s engagement in internal espionage activities, as reported today by Symantec’s…

Read MoreChinese Hackers Attack Taiwan and U.S. NGOs Using MgBot and MACMA Malware

Android Malware Wpeeper Conceals C2 Servers within Compromised WordPress Sites

Emerging Malware Threat Targets Android Devices Using Compromised WordPress Sites Cybersecurity experts have identified a newly discovered malware strain specifically targeting Android devices, exploiting compromised WordPress sites to obscure its command-and-control (C2) communications and evade detection. This malware, referred to as Wpeeper, is characterized as an ELF binary that utilizes…

Read MoreAndroid Malware Wpeeper Conceals C2 Servers within Compromised WordPress Sites