Malwarebytes

SEPTEMBER 27, 2023

Cryptocurrency owners should take heed of warnings related to Xenomorph malware—Bleeping Computer reports that the most recent version of Xenomorph now targets various cryptocurrency wallets using fake browser update messaging as bait. This on its own is already very malicious behaviour.

Cryptocurrency 100

Cryptocurrency Scams Malware Banking 100

Malwarebytes

DECEMBER 21, 2022

Researchers at Cyble Research & Intelligence Labs (CRIL) have found a new version of the Android banking Trojan called Godfather. Anubis was a widely used Android banking Trojan that lost popularity after its functionality got limited by Android updates and security vendors’ detection and prevention efforts.

Banking 93

Banking Malware Mobile Financial Services 93

Security Affairs

JUNE 18, 2022

Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers spotted a new strain of Android malware, named Malibot, that is targeting online banking and cryptocurrency wallet customers in Spain and Italy. ” concludes the report.

Banking 113

Banking Cryptocurrency Malware Mobile 113

Security Boulevard

SEPTEMBER 22, 2021

Cryptocurrency is best thought of as a digital currency that only exists on computers. It is transferred between peers (there is no middleman like a bank). Cryptocurrency Main Features. Cryptocurrency Main Features. Let’s dig into how cryptocurrency works. Cryptocurrencies are decentralized and distributed.

Cryptocurrency 113

Cryptocurrency Banking Encryption Education 113

Security Affairs

MARCH 28, 2019

Security experts at Group-IB have detected the activity of Gustuff a mobile Android Trojan, which includes potential targets of customers in leading international banks, users of cryptocurrency services, popular ecommerce websites and marketplaces. Gustuff has previously never been reported.

Banking 88

Banking Cryptocurrency Mobile Advertising 88

Security Affairs

FEBRUARY 21, 2022

Xenomorph Android trojan has been observed distributed via the official Google Play Store targeting 56 European banks. Researchers from ThreatFabric have spotted a new Android banking trojan, dubbed Xenomorph , distributed via the official Google Play Store that has over 50,000 installations.

Banking 121

Banking Malware Marketing Cryptocurrency 121

Trend Micro

AUGUST 8, 2021

The malicious application abused sideloading vulnerabilities to load and start the Cinobi banking trojan. We found a new social engineering-based malvertising campaign targeting Japan that delivered a malicious application.

Banking 128

Banking Social Engineering Cryptocurrency Engineering 128

Security Affairs

SEPTEMBER 11, 2021

SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. The malware allows attacker to gather sensitive data from infected devices, including banking credentials and PII. SecurityAffairs – hacking, banking Trojan). Pierluigi Paganini.

Banking 93

Banking DDOS Cryptocurrency Mobile 93

Security Affairs

NOVEMBER 8, 2023

The North Korea-linked APT BlueNoroff used a new strain of macOS malware strain dubbed ObjCShellz, Jamf Threat Labs reported. Researchers from Jamf Threat Labs discovered a new macOS malware strain dubbed ObjCShellz and attributed it to North Korea-linked APT BlueNoroff. ” concludes the report.

Malware 105

Malware Cryptocurrency Social Engineering Engineering 105

Security Affairs

MAY 27, 2022

A new version of the ERMAC Android banking trojan is able to target an increased number of apps. The ERMAC Android banking trojan version 2.0 ERMAC was first spotted by researchers from Threatfabric in July 2021, it is based on the popular banking trojan Cerberus. A new #Android banker ERMAC 2.0 already has an active campaign.

Banking 141

Banking Malware Cybercrime Phishing 141

Security Affairs

NOVEMBER 15, 2021

Security researchers from Cleafy discovered a new Android banking trojan, named SharkBot, that is targeting banks in Europe. At the end of October, researchers from cyber security firms Cleafy and ThreatFabric have discovered a new Android banking trojan named SharkBot. ” reads the analysis published by the researchers.

Banking 124

Banking Mobile Social Engineering Malware 124

Bleeping Computer

JUNE 16, 2022

Threat analysts have discovered a new Android malware strain named MaliBot, which poses as a cryptocurrency mining app or the Chrome web browser to target users in Italy and Spain. [.].

Malware 98

Malware Banking Cryptocurrency Mobile 98

Security Affairs

MARCH 23, 2023

Experts warn of an emerging Android banking trojan dubbed Nexus that was employed in attacks against 450 financial applications. Cybersecurity firm experts from Cleafy warn of an emerging Android banking trojan, named Nexus, that was employed by multiple groups in attacks against 450 financial applications.

Banking 77

Banking Cryptocurrency Malware Advertising 77

The Hacker News

AUGUST 14, 2023

Users in Latin America (LATAM) are the target of a financial malware called JanelaRAT that's capable of capturing sensitive information from compromised Microsoft Windows systems.

Malware 79

Malware Cryptocurrency Banking 79

Security Affairs

JANUARY 2, 2022

North Korea-linked threat actors are behind some of the largest cyberattacks against cryptocurrency exchanges. North Korea-linked APT groups are suspected to be behind some of the largest cyberattacks against cryptocurrency exchanges. billion (2 trillion won) worth of cryptocurrency from multiple exchanges during the past five years.

Cryptocurrency 124

Cryptocurrency Cybercrime Media Government 124

Security Boulevard

JANUARY 26, 2023

Godfather malware includes banking trojans used by different threat actors to target Android mobile devices. 1) One primary design of Godfather malware is to harvest login credentials for various financial applications, including cryptocurrency wallets and exchanges. Figure 2 shows an example of this lure.

Banking 83

Banking Malware Cryptocurrency Mobile 83

The Hacker News

JUNE 16, 2022

A new strain of Android malware has been spotted in the wild targeting online banking and cryptocurrency wallet customers in Spain and Italy, just weeks after a coordinated law enforcement operation dismantled FluBot.

Banking 89

Banking Cryptocurrency Malware 89

eSecurity Planet

DECEMBER 21, 2021

Cryptocurrency Fuels Ransomware. One constant in all this will be cryptocurrency, the coin of the realm when it comes to ransomware. Cryptocurrency really is fueling this in a sense. … If you were to take cryptocurrency away from that, they don’t have a convenient digital platform.

Cryptocurrency 139

Cryptocurrency Ransomware Cybercrime Social Engineering 139

Malwarebytes

FEBRUARY 22, 2022

Besides the name of the creature that “stars” in the Alien movies by 20 th Century Fox, Xenomorph is also the name given to an Android banking Trojan. Researchers found this banking Trojan to be distributed on the official Google Play Store, with more than 50,000 installations. One of these payloads was the banking Trojan Xenomorph.

Banking 104

Banking Backups Malware Cryptocurrency 104

SecureList

SEPTEMBER 28, 2023

Introduction As long as cybercriminals want to make money, they’ll keep making malware, and as long as they keep making malware, we’ll keep analyzing it, publishing reports and providing protection. Last month we covered a wide range of cybercrime topics. This blog post contains excerpts from those reports.

Banking 91

Banking Malware Cybercrime Encryption 91

Malwarebytes

NOVEMBER 16, 2021

Researchers have discovered and analyzed a new Android banking Trojan that allows attackers to steal sensitive banking information such as user credentials, personal information, current balance, and even to perform gestures on the infected device. Once installed, the malware downloads an additional module from the C2.

Banking 104

Banking Financial Services Encryption Malware 104

Security Affairs

SEPTEMBER 26, 2023

A new campaign is spreading Xenomorph malware to Android users in the United States, Spain, Portugal, Italy, Canada, and Belgium. Researchers from ThreatFabric uncovered a new campaign spreading Xenomorph malware to Android users in the United States and all over the world. reads the report published by Threat Fabric. “In

Malware 109

Malware Banking Phishing Engineering 109

Krebs on Security

OCTOBER 31, 2022

A 26-year-old Ukrainian man is awaiting extradition from The Netherlands to the United States on charges that he acted as a core developer for Raccoon , a popular “malware-as-a-service” offering that helped paying customers steal passwords and financial data from millions of cybercrime victims. According to the U.S.

Malware 282

Malware Identity Theft Cybercrime Accountability 282

CSO Magazine

MARCH 15, 2023

Cybercriminals have started taking advantage of Silicon Valley Bank’s (SVB) downfall to carrying out scams that can steal money, and bank account information, or infect customers’ systems with malware. SVB customers are expected to transfer their financial operations to other banks in the coming weeks.

Scams 97

Scams Cryptocurrency Banking Accountability 97

SecureList

JANUARY 13, 2022

BlueNoroff is the name of an APT group coined by Kaspersky researchers while investigating the notorious attack on Bangladesh’s Central Bank back in 2016. See our earlier publication about BlueNoroff attacks on the banking sector. See our earlier publication about BlueNoroff attacks on the banking sector.

Cryptocurrency 127

Cryptocurrency Malware Accountability Banking 127

Security Affairs

AUGUST 15, 2022

Security researchers from Cleafy reported that the SOVA Android banking malware is back and is rapidly evolving. The SOVA Android banking trojan was improved, it has a new ransomware feature that encrypts files on Android devices, Cleafy researchers report. The malware has been active since 2021 and evolves over time.

Encryption 97

Encryption Malware Banking Ransomware 97

CyberSecurity Insiders

MARCH 10, 2022

But here’s a news piece that gives details of a ransomware group that paid $6 million in salaries last year and even tried to develop its cryptocurrency. Please note that the above-stated details were divulged by a malware analysis company VX-Underground after analyzing a leaked chat from a Ukrainian researcher working on a Russian project.

Cryptocurrency 119

Cryptocurrency Ransomware Banking Hacking 119

Security Affairs

SEPTEMBER 24, 2020

Security researchers spotted a new strain of Android malware, dubbed Alien, that implements multiple features allowing it to steal credentials from 226 apps. Alien first appeared in the threat landscape early this year, its model of sale is Malware-as-a-Service (MaaS) and is advertised on several underground hacking forums.

Banking 85

Banking Malware Advertising Architecture 85

Heimadal Security

DECEMBER 15, 2021

In a recent malware operation, the Anubis Android banking malware is targeting clients of approximately 400 banking institutions. The cybercriminals are attacking financial institutions, cryptocurrency wallets, and digital payment systems by posing as an Orange S.A. More on […].

Malware 101

Malware Banking Cryptocurrency Passwords 101

Security Affairs

MARCH 7, 2022

SharkBot banking malware was able to evade Google Play Store security checks masqueraded as an antivirus app. SharkBot is a banking trojan that has been active since October 2021, it allows to steal banking account credentials and bypass multi-factor authentication mechanisms.

Banking 78

Banking Antivirus Mobile Malware 78

CyberSecurity Insiders

AUGUST 30, 2022

Google Translate is turning into a crypto mining malware and has reportedly claimed about 111,000 victims from over 11 countries. And as soon as the software is downloaded, a secret malware mining software also downloads along with it, that stays in hiatus for almost a fortnight. Yes, what you’ve read is right!

Malware 94

Malware Cryptocurrency Software Banking 94

Appknox

APRIL 13, 2021

Along with wireless payments like Google or Apple pay (that still require assigning a banking account or card i.e. physical currency), the cryptocurrencies like Bitcoin are getting widely used. No surprise here, that cash payments are becoming a relic of the past.

Cryptocurrency 105

Cryptocurrency Wireless Hacking Banking 105

Security Affairs

NOVEMBER 10, 2020

Researchers from Kaspersky Lab spotted a new Android banking Trojan, dubbed Ghimob, that is able to steal data from 112 financial Apps. Ghimob is a new Android banking Trojan discovered by Kaspersky that is able to steal data from 112 financial apps. ” continues the analysis. ” concludes the report.

Banking 99

Banking Mobile Malware Spyware 99

CyberSecurity Insiders

NOVEMBER 20, 2022

Thousands of financial transactions related to demat accounts were halted on Friday November 18th,2022 as the servers at the Central Depository Services (India) Limited went through a cyber attack of the malware genre. The post Malware attack on India CDSL halts financial transactions on Friday appeared first on Cybersecurity Insiders.

Malware 102

Malware Banking Cryptocurrency Cyber Attacks 102

Security Affairs

MARCH 3, 2020

The Department of Justice has charged the two Chinese nationals for laundering cryptocurrency for North Korea-linked APT groups. for helping North Korea-linked hackers in laundering cryptocurrency. The cryptocurrency have been stolen by the APT groups from two cryptocurrency exchanges. and Li Jiadong (???),

Cryptocurrency 97

Cryptocurrency Banking Hacking Accountability 97

Heimadal Security

SEPTEMBER 27, 2021

Cybersecurity researchers found a brand-new high-profile malware tracked as BluStealer that can steal cryptocurrency and banking information, log keystrokes, and upload files. According to specialists, the malware is distributed by threat actors through malicious email attachments. “BTC PAYMENT […].

Malware 75

Malware Cryptocurrency Banking Cybersecurity 75

Malwarebytes

APRIL 18, 2023

There’s a new ransomware gang in town, stitched together from members of well known threat creators to push a new kind of malware focused on punishing unwary organisations. The malware family, called “Domino”, is the brainchild of FIN7 and ex-Conti ransomware members.

Malware 84

Malware Banking Ransomware Passwords 84