First Android malware written in Kotlin found posing as Swift Cleaner app and stealing user data

-

First Android malware written in Kotlin found posing as Swift Cleaner app and stealing user data


Security researchers have discovered a new Android malware, written in the Kotlin programming language – the first ever of its kind to be found. The malware was found posing as a Google Play Store app called "Swift Cleaner" and already has between 1,000 to 5,000 installs.
The data-stealing malware is also capable of other kinds of malicious activities such as performing click ad frauds, remote command execution and sending SMS. According to security researchers at Trend Micro, who discovered the Android malware, it can also sign up victims for premium SMS subscription services, without their knowledge or permission.


Comments

Post a Comment

Popular posts from this blog

Brute-Force Email Using a Simple Bash Script (Ft. THC Hydra)

-
Image
Brute-Force Email Using a Simple Bash Script (Ft. THC Hydra) THC Hydra is very prominent online brute-force tool and has been featured in Null-Byte quite a lot. It is dictionary based, as you will have to provide a wordlist with possible passwords. You can read the README here:  https://github.com/vanhauser-thc/thc-hydra Today ,we will be focusing on brute forcing email, or more specifically, SMTP, also known as the Simple Mail Transfer Protocol. It is your standard protocol for sending electronic mail. Let's get started! Step 1 Open Up Kali! Of course, we will be using Kali Linux. I use mine on VMware Workstation, but it won't really matter what you use. Let's open up Leafpad, or your text editing program of your choice. Step 2 Bash Time! We're going to write a little bit of script, so that we can save some time instead of going through the hassle of actually typing out parameters. On Leafpad, type: #! /bin/bash echo Sim...
Read more

OnePlus investigating credit card fraud reports

-
Image
OnePlus investigating credit card fraud reports A number of OnePlus customers have reported unusual credit card transactions after buying products from the smartphone maker’s online store. And, today, OnePlus announces a formal investigation. OnePlus reveals that the complaints come only from users who have made direct purchases and adds that purchases involving third-party services — PayPal, for example — are not affected. The company  says  that it does not store the credit card information that users enter when making a purchase. OnePlus explains that this data is actually processed — but not also stored — by a payment processing company. The only time that credit card-related information is stored on OnePlus’ servers is when users choose the option “save this card for future transactions,” and even then only a token and a few digits from the card’s number are remembered. OnePlus says that using just that information it is not possible to make purchases, ...
Read more

Ghost Phisher - Phishing & Penetration Attacks

-
Image
Ghost Phisher - Phishing & Penetration Attacks Ghost Phisher   is a computer security application that comes inbuilt with a Fake DNS Server, Fake DHCP Server, Fake HTTP server and also has an integrated area for automatic capture and logging of HTTP form method credentials to a database. The program could be used as an honey pot,could be used to service DHCP request , DNS requests or phishing attacks Features : ºHTTP Server ºInbuilt RFC 1035 DNS Server ºInbuilt RFC 2131 DHCP Server ºWebpage Hosting and Credential Logger (Phishing) ºWifi Access point Emulator ºSession Hijacking (Passive and Ethernet Modes) ºARP Cache Poisoning (MITM and DOS Attacks) ºPenetration using Metasploit Bindings ºAutomatic credential logging using SQlite Database ºUpdate Support Operating System Supported Software runs on any Linux machine with the programs prerequisites, Prerequisites The Program requires the following to run properly: The following dependencies can be insta...
Read more