Remember when news broke out that a certain retail or hotel chain was hit by a sophisticated malware attack that allowed hackers to steal personal information belonging to a large number of customers, including payment information? Well, this is such a case. And if you stayed at one of the 20 following hotels and paid for goods using your credit cards, then your financial data may be at risk, and you probably have to take various preemptive measures. More →
Earlier today, researchers from Kaspersky Lab reported that they recently stumbled across a new piece of sophisticated Android malware designed to steal a user’s banking credentials. In a broad sense, the malware is similar to other schemes we’ve seen before insofar that it uses cleverly thought out phishing schemes designed to trick users into entering in their banking user ID and password.
Most Android users will never have to deal with malware apps on their devices, or at least not as long as they don’t download potentially malicious apps from third-party app stores. But there are people who can’t get apps from Google Play or choose to ignore the official app store, and they are more exposed to malicious apps.
One malware app was just updated with a feature that can block calls to customer support numbers belonging to certain banks so that affected users can’t stop fraudulent transactions. More →
Ransomware is a real problem for many institutions and consumers who do not know how to protect their PCs while surfing the web. Ransomware apps lock certain files on a computer with encryption, making them inaccessible until the target pays a ransom, usually in virtually untraceable Bitcoin. The scam is very lucrative for some hackers, who usually restore access to temporarily encrypted files as soon as a computer owner pays the fee, and these ransomware apps aren’t exactly easy to code.
Ranscam is one such example of a badly executed ransomware app. But because it’s a bad type of malware, it’s also the worst Windows infection you can currently get. More →
Pokemon Go might just be the game of the year. Nintendo struck gold with this mobile endeavor, as millions of users around the world have already downloaded the application and are devoting plenty of time to hunting Pokemon. That also means that hackers have adapted their attacks to hunt those Pokemon fans who’re eager to try out the application. Researchers have already discovered malware inside versions of the Pokemon Go app for Android. More →
Yesterday, we warned you about a new Android malware called HummingBad. The malware has reportedly infected an astounding 10 million devices already, with over 280,000 of those infections estimated to have taken place in the US. Unfortunately, chances are that even if you’ve been hit, you won’t know about it.
So how can you find out if your Android device has HummingBad?
Up until this year, Mac users never had to worry about malware infecting their computers, but it appears that hackers have finally caught up with the platform. Originally discovered by Bitdefender, Backdoor.MAC.Eleanor is the name of a new piece of malware that creates a backdoor through which an attacker can gain access to the control-and-command center from the outside.
Another day, another report of Android malware wreaking havoc across the world. Earlier this month, security researchers from Check Point published a report on a newly discovered piece of malware called HummingBad that has reportedly infected as many as 10 million devices worldwide.
According to the report, the malware is being run by a Chinese group called YingMob which leverages the malware to install fraudulent apps and generate fraudulent ad revenue. “The group is highly organized,” Check Point notes, “with 25 employees that staff four separate groups responsible for developing HummingBad’s malicious components.” What’s more, the group appears to be extremely successful, with revenue from their malicious undertaking reportedly bringing in as much as $300,000 per month. As it stands now, most affected devices happen to be located in China and in India.
Android malware is a serious issue that affects millions of people, no matter what you hear from Google. It’s one of the reasons the iPhone is still better than Android after all these years.
We recently learned about a new type of malicious application can masquerade as WhatsApp, Facebook, and Uber to harm users, and now a new report notes that a trojan-type of Android application has infected millions of users, netting the Chinese group of hackers who developed it about $500,000 per day at one point. More →
Security researchers from FireEye recently uncovered a new piece of Android malware that can mimic the look and feel of app interfaces from the likes of Uber, WhatsApp and Google Play. The malware reportedly struck first in Denmark and is now making its way through a handful of other European countries, including Italy, Germany and Austria.
According to researchers, the malware is spread via a basic yet cleverly deceptive SMS phishing scheme. When a user receives and subsequently clicks on an ostensibly legit link, the malware is downloaded and begins to monitor which apps are active and which apps are running in the background. What happens next is extremely clever: when a user attempts to use an app that the “malware is programmed to target”, the software overlays a fake user interface with “nearly identical credential input UIs as seen in benign apps.” In turn, the malware than asks unassuming users to enter in sensitive information such as their banking credentials or credit card information.
So you have an air-gapped computer, or unconnected to the Internet, and you think your data is secured just because it’s not accessible online? In most cases that might be true, but that’s not 100% accurate. There are ways to steal information from computers that are not connected to the web, and smart hackers will not stop looking for such tricks. The newest such malware would let attackers steal information from supposedly secure computers with the help of the sound made by its fans and processor. More →
Hackers behind massive $81M cyber-heist also compromised the backbone of the global financial system
Hackers stole $81 million in a sophisticated attack on the Bangladesh Bank in February, which makes it one of the most impressive cyber-heist in history. The hackers were planning to steal $951 million in total, using fraudulent transactions. Recently uncovered evidence revealed that poor security – $10 internet routers – offered them access to the bank’s entire infrastructure, including the SWIFT servers that are responsible for financial transactions.
A new report indicates that hackers also breached SWIFT, the backbone of the global financial system that makes possible financial transactions. More →
There has been a lot of talk lately about personal data security, and for good reason. In recent years, more and more hackers have been taking advantage of all sorts of vulnerabilities in web-connected products to steal personal details belonging to millions of consumers, load malicious programs on their machines, and even steal money.
Even so, there are things you can do to protect your data so that it doesn’t fall into the wrong hands. More →