A new Android Trojan, named SoumniBot, has been uncovered, specifically targeting users in South Korea by exploiting vulnerabilities in the Android manifest extraction and parsing procedures. This malware is distinctive for its unconventional methods of evasion, particularly through the obfuscation of the Android manifest, as revealed by Kaspersky researcher Dmitry…
Several widely-used Android applications on the Google Play Store have been identified as vulnerable due to a path traversal vulnerability known as the “Dirty Stream” attack. This flaw could enable malicious applications to overwrite files within the affected apps’ home directories. According to Dimitrios Valsamaras from the Microsoft Threat Intelligence…
The cyber threat group known as Arid Viper, also referred to as APT-C-23 or Desert Falcon, has emerged as the perpetrator behind a recent Android spyware campaign aimed at Arabic-speaking individuals. This sophisticated operation involves the distribution of a fake dating application that is designed to infiltrate users’ devices, extracting…
Kremlin-Backed Malware Targets Ukrainian Military Recruits Recent findings from Google researchers reveal the emergence of a sophisticated operation allegedly backed by the Kremlin, aimed at targeting individuals considering enlistment in the Ukrainian military. This disturbing campaign utilizes information-stealing malware designed for both Windows and Android platforms, primarily disseminated through Telegram…
Google Alerts Users to Exploited Vulnerability in Pixel Firmware Google has issued a warning regarding a security vulnerability affecting Pixel Firmware that is currently being exploited in the wild. Labeled as a zero-day flaw, this high-severity issue, identified by the code CVE-2024-32896, is categorized as an elevation of privilege vulnerability.…
Title: Analyzing App Location Permissions Amid Privacy Concerns In a growing focus on privacy, both Android and iOS platforms offer users insight into app permissions related to location data. Users are now able to manage their choices regarding whether an application can access their location consistently, only when in use,…
In a recent cybersecurity incident, approximately 25 websites associated with the Kurdish minority have fallen victim to a sophisticated watering hole attack designed to collect sensitive information over an extended period of time, reportedly lasting more than 18 months. French cybersecurity firm Sekoia disclosed the details of the campaign, labeled…
A Beijing-linked state-sponsored hacking group known as Daggerfly has targeted organizations in Taiwan and a U.S. non-governmental organization (NGO) operating in China, deploying an upgraded suite of malware tools in its most recent campaign. This sophisticated operation highlights the group’s engagement in internal espionage activities, as reported today by Symantec’s…
Emerging Malware Threat Targets Android Devices Using Compromised WordPress Sites Cybersecurity experts have identified a newly discovered malware strain specifically targeting Android devices, exploiting compromised WordPress sites to obscure its command-and-control (C2) communications and evade detection. This malware, referred to as Wpeeper, is characterized as an ELF binary that utilizes…
