Trend Micro cyber security experts: The code has evolved in a banking malware combining information theft and ransomware. It targets 188 banking and finance related apps worldwide.
Trend Micro cyber security experts: The first malicious code abuses user account control (UAC) bypass and works as a loader for other threats. The second is a dangerous backdoor.
Trend Micro cyber security experts: It’s concealed in 182 free-to-download game and camera apps, majority of which on Google Play Store, and collectively had millions of downloads.
The malware chain of infection starts with a weaponized email in Korean. The cyber security experts: It’s seems the work of TA505 APT, focused on financial institutions-retail companies.
Trend Micro cyber security expert: So far observed more than 660 Android devices infected with GolfSpy malware. Much of the information being stolen appear to be military-related.
Trend Micro cyber security experts: The Iranian state-sponsored APT is using new tools and payloads, which indicates that it’s continuously developing the schemes.
Malwarebytes cyber security expert Jerome Segura: Magecart groups inject credit card stealer scripts within every page of the hacked websites and configured it to pop-up.
Trend Micro cyber security experts: Its used in combination with basic pop-up authentication to freeze a user’s browser and steal credentials and information.