Don't you just hate spam messages? They're annoying, most of the time fake and clog up your mail. A certain Trojan has been found lurking inside spam messages. Android.SmsBot.459.origin, Android.SmsBot for short, is distributed through SMS spam messages that contains links to seemingly harmless apps(e.g. client application for a well-known advertising website, apps to view MMS, etc.).
Friday, February 26, 2016
Did you slip pass the Bouncer?
Have you ever gone to a club and then the Bouncer didn't let you through? Bummer, right? You and your pals just wanted to have fun and hang, right? Well, I know a certain malware(or two) that slipped through Google Play's Bouncer.
Wednesday, February 24, 2016
Adware cocktail, anyone?
Adwares have been a really huge malware trend this 2015. It not only aggressively displays ads, it also has other devious functions as well. Nowadays, Adware is not just Adware. And some adware capabilities are mixed in with others, like these malwares for example:
So you wanted an Ad blocker on your mobile device
Don't you just hate ads? Ads that suddenly popup on your screen while you're browsing online or playing an online game? Ads that take up almost all of the space on a web page. Ads that suddenly play music or vids. Well, we hated them while we're on the computer. (But thank God for AdBlock and AdBlock Plus.) What more if they do the same on our smart phones? It'll make you go insane!
Does your backup service really backup your data?
Have you ever wished that your smartphone had more memory space? Have you ever had an experience wherein you wanted to take more selfies but your phone's memory and memory card is already full? Don't you just wish that you could just go online and remotely save your pictures(and or other files)? Well, you can. You can just backup and upload your files into a server and voila! free space!
Tuesday, February 23, 2016
Are Antivirus Security apps' Firewalls strong enough?
Like their Computer counterparts, A lot of Mobile Antivirus Security apps now also offer strong Firewalls for mobile devices. But the question is, how strong can your mobile antivirus' Firewall be and can it withstand Android.Spywaller's attack?
Android Ransomware uses Google's Material Design to trick users
Malware devs are getting more creative and complex with their ransomwares. They even stole Google's Material Design and an open-source project to create the lockscreen's user interface which allows them to display fake legal notices and retrieved device logs to make their ransom letter look highly legit.
Be careful with your logins
Banks are adapting to the very rapid flow of technology nowadays. Like I've said in an earlier post, people just tap on their smart devices and voila! a transaction has been made.
Today, we're going to talk about a rather intelligent Bank malware which, instead of camouflaging itself as a certain app, identifies a running bank app then overlays a customized fake login page in place of the real bank app's login page.
Today, we're going to talk about a rather intelligent Bank malware which, instead of camouflaging itself as a certain app, identifies a running bank app then overlays a customized fake login page in place of the real bank app's login page.
Monday, February 22, 2016
Malware that's a nesting doll of sorts
For this day's topic, let's talk about Trojan.Dropper.RealShell's propagation.
What is Trojan.Dropper.RealShell?
Trojan.Dropper.RealShell is an APK which creates another APK on an infected device. And then that other APK creates another APK on the device.
Are you sure about your bank app updates?
Nowadays, people conveniently use their smartphones to bank and pay for their purchases or make some transactions. Cyber criminals are especially interested in this and are trying their best to trick people into giving their bank credentials.
Wednesday, February 17, 2016
Malicious game apps that could steal your face(plus a lil reminder to you guys)
Nowadays, games can sometimes go hand-in-hand with Facebook. Some games are already on Facebook and some can have their players log in using their Facebook account.
Minecraft gets maliciously crafty
We all know(or not) that a lot of people play Minecraft. Be it a teen, a kid or a kid at heart. You Minecraft, I Minecraft, We all Minecraft. And, as usual with games, sometimes we just want that extra boost. Right? Like, We all want free in-game items, coins, gems, game cash, loots, etc., so we could be on that top player's list or just simply hoard all that good in-game stuff. Who wouldn't want that? You could even get that rare item that you always wanted.
Just when you thought you were safe
With all these smart devices popping up here and there like mushrooms, not to mention all the malware, trojans, viruses, etc., that you can get. One can't blame a person from being paranoid of having their data and identity stolen from them.
A play of 'Click - You're IT'
Ever heard of one-click frauds? How about the like-jacking trend before on Facebook? These frauds force users to click(or like) on ads(or like buttons) within a browser or page.
A recently discovered fraudulent adult video website attempts to trick users into installing an app as part of a scam. When a user proceeds to view an adult video and clicks on the play button, a download of a certain 'player.apk' will begin.
The app's list of permissions does not seem to be malicious at all because it is not only short but only includes privacy permissions.
After installing and launching the app, a member's page showing a selection of adult videos will be displayed onscreen. After a while, the app will then display details about a subscription that the user has apparently subscribed to and now must pay for.
What's unique about this Android.Oneclickfraud variant?
Instead of asking for the usual bank transfer payment, this variant asks for the user's card details as a form of payment.
The user is offered two subscription fees. The user is given a chance to pay 99,000 Japanese Yen within 3 days. However, payment exceeding 3 days would lead the fee's price to increase to 300,000 Japanese Yen. This is to make the user panic and pay as quickly as they can.
This malware has been suspected to have begun last May and had been downloaded over 500 times at the time.
Article Ref: http://www.symantec.com/connect/blogs/japanese-one-click-fraudsters-give-old-trick-second-chance
A recently discovered fraudulent adult video website attempts to trick users into installing an app as part of a scam. When a user proceeds to view an adult video and clicks on the play button, a download of a certain 'player.apk' will begin.
 |
| 'player.apk' is ready to be installed |
The app's list of permissions does not seem to be malicious at all because it is not only short but only includes privacy permissions.
 |
| list of app permissions |
After installing and launching the app, a member's page showing a selection of adult videos will be displayed onscreen. After a while, the app will then display details about a subscription that the user has apparently subscribed to and now must pay for.
 |
| subscription details displayed by the app |
What's unique about this Android.Oneclickfraud variant?
Instead of asking for the usual bank transfer payment, this variant asks for the user's card details as a form of payment.
 |
| payment options that the malware presents |
The user is offered two subscription fees. The user is given a chance to pay 99,000 Japanese Yen within 3 days. However, payment exceeding 3 days would lead the fee's price to increase to 300,000 Japanese Yen. This is to make the user panic and pay as quickly as they can.
This malware has been suspected to have begun last May and had been downloaded over 500 times at the time.
Article Ref: http://www.symantec.com/connect/blogs/japanese-one-click-fraudsters-give-old-trick-second-chance
Tuesday, February 16, 2016
A gift? For me? Why, thank you
With smartphones around(that's probably online all day, everyday), the world is but a tap away from people. People can pretty much do everything with their smartphones. Messaging and calling locally or overseas, playing games, video chatting, watching and/or streaming videos or music, and even shopping! The world can basically be at your fingertips.
The FBI and NSA are watching our smart devices...or maybe not
Similar to my previous post, this topic will also be about.. "adult-themed apps?" LOL, no. It'll be about more Ransomware and Screen Lockers.
Recently discovered Android/Simplelocker and Android/Lockerpin.A. Have been reportedly spreading and infecting a lot of Android Users. These Ransomwares are getting more sophisticated and complex with each new discovered variant.
Recently discovered Android/Simplelocker and Android/Lockerpin.A. Have been reportedly spreading and infecting a lot of Android Users. These Ransomwares are getting more sophisticated and complex with each new discovered variant.
Monday, February 15, 2016
A player that plays you
Nowadays, almost everyone has an Android device. It's convenient, useful and not to mention private. People install all kinds of apps. Game apps, Social Media apps, Shop apps, Bank apps, Music apps, Video Streaming apps and even those naughty adult apps(if ya know what I mean. wink wink).
Excuse me. Are you an Adware or a Rootkit?
"I am NOT a ROBOT", says the Malware
Have you ever seen those.. whatcha call them? mmm.. random images on a form when you sign up(or login, register, do a password recovery or comment on a post) that tells you to type whatever you see on the image at the box? Yup! Those are CAPTCHAs, my friend.
Friday, February 12, 2016
Malware devs can be fans too y'know!-- or so we thought
If an app is super hot right now, expect Malware devs to jump in the bandwagon of fans as well. Not because they're fans too, of course.(or maybe they are.) But it's because they can smell from a mile away that a lot of vulnerable users and potential victims would be downloading those hot apps right away. Their method? Imitate that app, of course!
And you thought they were just Adware
Adware
in Android devices have been around since the mobile OS has started.
But nowadays, adware can be much more than just annoying advertisements.
For example, the malware named HideIcon and NotFunny are classified
as adware however it could be more than just that.
A card game's tricks
In early 2015,
millions of Android users have reported a certain game app called
Durak; a card game which stayed available at Google Play for quite
some time. This malware is said to have been the most widespread of
the malicious apps with 5 – 10 million downloads according to
Google Play.
Subscribe to:
Posts (Atom)