Security Alerts & News
by Tymoteusz A. Góral

History
#1988 Marcher - Android banking Trojan on the rise
The past months many different banking Trojans for the Android platform have received media attention. One of these, called Marcher, seems to be especially active with different samples appearing on a daily basis. This malware variant also appears to be technically superior to many other banking Trojans being able to use its overlay attack even on Android 6, which has technical improvements compared to the previous Android versions to prevent such attacks.

The main infection vector is a phishing attack using SMS/MMS. The social engineering message includes a link that leads to a fake version of a popular app, using names like Runtastic, WhatsApp or Netflix. On installation, the app requests the user to provide SMS storage access and high Android privileges such as Device Admin. Other infection vectors include pornographic websites serving apps called Adobe Flash or YouPorn.
Read more
#1990 Security and privacy guidelines for the Internet of Things (IoT)
#1989 Mirai widens distribution with new Trojan that scans more ports
#1988 Marcher - Android banking Trojan on the rise
#1987 IBM integrates Watson into its security operations platform
#1986 Sage 2.0 ransomware delivered by Pandex spambot, mimics Cerber routines
#1985 New wave of cyberattacks against global banks linked to Lazarus cybercrime group
#1984 Now sites can fingerprint you online even when you use multiple browsers
#1983 Ultranationalist developer behind SerbRansom ransomware
#1982 Firefox Focus privacy scandal
#1981 Attackers target dozens of global banks with new malware
#1980 ElcomSoft extracts deleted Safari browsing history from iCloud
#1979 Virally growing attacks on unpatched WordPress sites affect ~2m pages
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12