ESET researchers discovered a new Android Trojan using a novel Accessibility-abusing technique that targets the official PayPal app, and is capable of bypassing PayPal’s two-factor authentication. There is a new Trojan preying on Android users, and it has some nasty tricks up its sleeve. First detected by ESET in November 2018, the malware combines the … More Android Trojan steals money from PayPal accounts even with 2FA on
The malicious apps have all been removed from the official Android store but not before the apps were installed by almost 30,000 users. Malware authors keep testing the vigilance of Android users by sneaking disguised mobile banking Trojans into the Google Play store. We’ve recently analyzed a set of 29 such stealthy Trojans, found in … More Banking Trojans continue to surface on Google Play
ESET researchers have discovered new DanaBot campaigns targeting a number of European countries. Recently, we have spotted a surge in activity of DanaBot, a stealthy banking Trojan discovered earlier this year. The malware, first observed in campaigns targeting Australia and later Poland, has apparently expanded further, with campaigns popping up in Italy, Germany, Austria, and … More DanaBot shifts its targeting to Europe, adds new features
Cybercrooks use bogus apps to phish six online banks and a cryptocurrency exchange. Another set of fake finance apps has found its way into the official Google Play store. This time, the apps have impersonated six banks from New Zealand, Australia, the United Kingdom, Switzerland and Poland, and the Austrian cryptocurrency exchange Bitpanda. Using bogus … More Fake finance apps on Google Play target users from around the world
Every now and then it’s good to remind readers of some basic security measures. Although we’ve written about it before, it’s time to look at public WiFi security again. There are several potential dangers when using public WiFi, ranging from privacy issues to cybercrime attacks. But most can be easily avoided by following these simple … More How to stay safe on public WiFi networks?
Fraudsters are using bogus apps to convince users of three Indian banks to divulge their personal data. Another set of fake banking apps has found its way into the official Google Play store. Claiming to increase the credit card limit for users of three Indian banks, the malicious apps phish for credit card details and … More Fake banking apps on Google Play leak stolen credit card data
Simplii Financial and Bank of Montreal are believed to have suffered a twin attack that was soon followed by blackmail threats. Two Canadian banks have announced that cybercriminals may have made off with the data of up to 90,000 of the banks’ customers in apparent security breaches, according to a CBC.ca report. Online bank Simplii Financial … More Two Canadian banks warn attackers may have stolen customer data