Stealthy new Android malware poses as ad blocker, serves up ads instead

Since its discovery less than a month ago, a stealthy new Android malware has already been detected on over 500 devices, and it’s on the rise. Learn how this clever threat pretends to be an ad blocker and then hides itself on mobile devices, all while serving up tons of ads.

Read more

Meet Extenbro, a new DNS-changer Trojan protecting adware

We found a new Trojan that uses aggressive techniques, including blocking access to security sites, to deliver an adware bundler. Read up on what Extenbro can do and how to get this pest off your system.

Read more

Adware and PUPs families add push notifications as an attack vector

Push notifications are being added to the arsenal of PUPs, adware, and even a Trojan browser extension that spams Facebook groups.

Read more

Emotet revisited: pervasive threat still a danger to businesses

Emotet is often mentioned as one of the most annoying, effective, and costly present-day malware infections. We discuss the reasons why and the proper way to remove it.

Read more

A week in security (September 10 – 16)

A roundup of the security news from September 10–16, including omnichannel fraud, ways to get back at scammers, the security of 2FA, and partnerstrokas.

Read more

Process Doppelgänging meets Process Hollowing in Osiris dropper

Process doppleganging, a rare technique of impersonating a process, was discovered last year, but hasn’t been seen much in the wild since. It was an interesting surprise, then, to discover its use mixed in with Process Hollowing, yet another technique, in a dropper for the Osiris banking Trojan.

Read more

Fake Fortnite for Android links found on YouTube

The extremely popular video game Fortnite is coming to Android sometime this summer, and the fanbase is going wild. Not surprisingly, mobile malware developers are taking advantage. Already, there are several videos on YouTube with links claiming to be versions of Fortnite for Android. Spoiler alert: they’re fake.

Read more

An in-depth malware analysis of QuantLoader

QuantLoader is a Trojan downloader that has been used in campaigns serving a range of malware, including ransomware, Banking Trojans, and RATs. In this post, we’ll take a high-level look at the campaign flow, as well as a deep dive into how the malware executes.

Read more

Bogus hack apps hack users back for cryptocash

Recently, we discovered a gold mine of fake hack apps that mine for Monero cryptocurrency and serve up annoying adware.

Read more

Lo lo lo Loapi Trojan could break your Android

Loapi Trojan discovered on Android devices—a downloader, dropper, adware app, and SMS Trojan all in one—could literally blow up your phone. Read on to learn how to protect against it.

Read more

Select your language