Cybercriminals Hijack Router DNS to Distribute Android Banking Trojan

Security researchers have been warning about an ongoing malware campaign hijacking Internet routers to distribute Android banking malware that steals users’ sensitive information, login credentials and the secret code for two-factor authentication. In order to trick victims into installing the Android malware, dubbed Roaming Mantis, hackers have been hijacking DNS settings on vulnerable and poorly secured routers. DNS hijacking attack …


Hackers Found Using A New Code Injection Technique to Evade Detection

While performing in-depth analysis of various malware samples, security researchers at Cyberbit found a new code injection technique, dubbed Early Bird, being used by at least three different sophisticated malware that helped attackers evade detection. As its name suggests, Early Bird is a “simple yet powerful” technique that allows attackers to inject malicious code into a legitimate process before its …

Beware ad slingers thinly disguised as security apps

ESET researchers have analyzed a newly discovered set of apps on Google Play, Google’s official Android app store, that pose as security applications. Instead of security, all they provide is unwanted ads and ineffective pseudo-security. The post Beware ad slingers thinly disguised as security apps appeared first on WeLiveSecurity

Memcached, the latest DDoS attack

Lately, Distributed Denial of Service (DDoS) attacks have grown in popularity and effectiveness, undermining internet security. March kicked off with the most powerful DDoS attack in history: 1.35 terabytes of traffic hit GitHub, the collaborative developer platform. However, just a few days later, a new threat thwarted by Arbor Networks smashed that record, with a 1.7Tbps attack. Unlike the DDoS …

Glupteba is no longer part of Windigo

Latest ESET research strongly suggests that Glupteba is no longer tied to the infamous Operation Windigo. The post Glupteba is no longer part of Windigo appeared first on WeLiveSecurity

Travel Fare Aggregator Orbitz has Been Hacked

On Tuesday, Expedia announced that one of its subsidiary companies might have been hacked. There is a high possibility that the online travel booking platform might have been compromised in early 2016, and again right before Christmas of 2017. According to a statement released by Expedia earlier this week, cybercriminals might have had access to sensitive information of roughly …

RottenSys: Some smartphones are coming with malware already installed

This is probably the one smartphone feature you did not have on your “must have” list: Researchers have uncovered a stream of phones hitting the market which come with malware, named RottenSys, pre-installed – without their new owners having to do a single swipe. Nearly 5 million phones are believed to be included in this scheme. […] The post RottenSys: Some …