Malware warning for Mac users, after HandBrake mirror download server hacked

A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware. The first most Mac users will know about the security incident will be when they visit the app’s website, at https://handbrake.fr, and see a link to a “Security Alert”: Anyone who … More Malware warning for Mac users, after HandBrake mirror download server hacked

Turn the light on and give me your passwords!

Android users were the target of another banking malware with screen locking capabilities, masquerading as a flashlight app on Google Play. Unlike other banking trojans with a static set of targeted banking apps, this trojan is able to dynamically adjust its functionality. Aside from delivering the promised flashlight functionality, this remotely controlled trojan comes with … More Turn the light on and give me your passwords!

Healthcare challenges: Ransomware and the Internet of Things are the tip of the iceberg

2015’s Anthem and Premera breaches made the general public more aware of the importance of security in healthcare organizations. 2016 brought fewer instances of massive healthcare breaches, but sadly this does not suggest that the problem has been solved. In fact, 2016 brought a surfeit of successful ransomware attacks in a variety of industries, and medical … More Healthcare challenges: Ransomware and the Internet of Things are the tip of the iceberg

Don’t pay for what is for free: Malicious Adobe Flash Player app found on Google Play

Based on ESET’s notice, Google has removed another malicious app from its official Android app store. It had received 100,000-500,000 downloads since November 2016. Unlike typical downloaders, ransomware and similar nasty stuff, this app – named F11 – did not contain any harmful code. Instead, it relied purely on social engineering, tricking users into paying … More Don’t pay for what is for free: Malicious Adobe Flash Player app found on Google Play

If you download Minecraft mods from Google Play, read on …

Minecraft players have been exposed to scams and aggressive ads brought by 87 fake Minecraft mods recently spotted on Google Play. The apps can be divided into two categories – the ad-displaying downloader detected by ESET as Android/TrojanDownloader.Agent.JL and fake apps redirecting users to scam websites, detected as Android/FakeApp.FG. Altogether, the 87 fake mods reached … More If you download Minecraft mods from Google Play, read on …

Released Android malware source code used to run a banking botnet

The new Android banking malware ESET recently discovered on Google Play was spotted in the wild again, targeting more banks. Further investigation of this resurfacing threat has uncovered its code was built using source code that was made public a couple of months ago. The previous version was detected by ESET as Trojan.Android/Spy.Banker.HU (version 1.1 … More Released Android malware source code used to run a banking botnet

Sunny with a chance of stolen credentials: Malicious weather app found on Google Play

See also Released Android malware source code used to run a banking botnet. Android users were the target of new banking malware with screen locking capabilities, which was disguised as a weather forecast app on Google Play. Detected by ESET as Trojan.Android/Spy.Banker.HU, the malware was a trojanized version of the otherwise benign weather forecast application Good … More Sunny with a chance of stolen credentials: Malicious weather app found on Google Play