Cinch I.T.’s Post

A new Android malware named Brokewell has emerged, disguised within fake browser updates. This malware is sophisticated, featuring data theft and remote-control capabilities. Brokewell actively evolves, incorporating new commands to capture touch events, on-screen text, and monitor launched applications. It masquerades as legitimate apps like Google Chrome, ID Austria, and Klarna. Notably, it can bypass Google’s restrictions on accessibility service permissions for sideloaded apps. #AndroidMalware #Brokewell #FakeUpdates #MobileSecurity #ThreatFabric Codes for thought… 1.How does the Brokewell Android malware circumvent Google’s restrictions on accessibility service permissions for sideloaded apps, and what implications does this have for mobile security? 2.What steps can Android users take to protect themselves against malware like Brokewell that disguises itself as legitimate applications, such as being wary of fake app updates and practicing cautious app installation practices?

In re malicious Android apps campaign that can swipe crypto seed phrases stored as images. Pretty ingenious since quite a few folks actually do that. "Recently, McAfee’s Mobile Research Team uncovered a new type of [Android] mobile malware that targets mnemonic keys by scanning for images on your device that might contain them." ---- No doubt this could work, not just for crypto seed phrases stored as images, but, with a little tweaking, probably for critical passwords/credentials stored as images as well. Looking at the icons in the timeline in the blog article, it appears that in August 2024 the attackers may have been using some bogus apps pretending to be legitimate UK government apps. https://lnkd.in/d5gacqAD #cybersecurity #cybersecurityawareness #socialengineering #scamprevention #scamawareness #fraudprevention #fraudawareness

A new variant of the Octo Android malware has been discovered, and it's more deceptive than ever. This new version, dubbed Octo2, can cleverly disguise itself as popular apps like NordVPN and Google Chrome, tricking unsuspecting users into downloading it. Once installed, Octo2 can steal your personal information and even lock you out of your device. Here's how to protect yourself: * Download apps only from official app stores, such as Google Play. * Be cautious of apps with enticing promises or functionalities that seem too good to be true. * If you're unsure about an app's legitimacy, do your research before downloading it. By staying vigilant, you can help safeguard yourself from this and other mobile malware threats. #Octo2 #AndroidMalware #NordVPN #GoogleChrome #CybersecurityAwareness https://lnkd.in/gSA_PeSy

Android users face a critical VPN warning due to hidden threats. Certain VPN apps on Google Play Store conceal the PROXYLIB malware, fraud, phishing, and password spraying. Although Google banned these apps, caution is crucial. HUMAN’s Saori team recommends downloading apps exclusively from trusted sources and activating Google’s Play Protect. With the possibility of more attracts looming, users must remain cautious during app installation to mitigate potential risks. #AndroidVPN #SecutityAlert #GooglePlayThreat #MalwareWarning #Thesocialtalks

Bad news: There's new malware in town and it's not playing nice. Meet Vultur, the latest Android banking trojan causing a stir in the cyber security world. And Vultur is no ordinary trojan virus. It's got a bag of tricks that would make even seasoned security experts raise an eyebrow. Back in 2021, Vultur caused concern thanks to screen-recording on Android smartphones. But it’s kicked things up a gear. Vultur's had an upgrade, complete with remote control capabilities. Unlike traditional malware, Vultur doesn't rely solely on apps to worm its way into your device. The latest campaign starts with a text message claiming there's been a suspicious transaction on your bank account. Feeling the pressure, you might just dial the number provided in the message. But here's where things take a turn for the worse. During the call, you receive another text, this time with a link to what appears to be a legit McAfee Security app. Spoiler alert: It's anything but legit. Once you take the bait and install the trojanized app, it downloads the Vultur banking trojan onto your device. Our advice to stay protected remains the same as always: • Warn your team about the dangers • Install Google Play Protect on your Android devices • Beef up your device's security with an Android antivirus app If you need help protecting your business’s devices, get in touch. #Android #Malware #CyberSecurity https://bit.ly/3vPqSfb

Security researchers have recently discovered a new Android banking trojan named Brokewell, capable of capturing every activity on the device, including touches, text input and launched applications. 🚨 The malware is distributed through fake Google Chrome update prompt displayed during web browsing sessions. Its primary objectives are data theft and offer remote control for attackers 🚩. According to ThreatFabric, the mastermind behind Brokewell operates under the name Baron Samedit, who sells tools for checking stolen accounts for at least two years. Researchers anticipate further enhancements to Brokewell's capabilities, foreseeing its distribution among cybercriminal circles through underground forums as part of a malware-as-a-service (MaaS) operation. 📢 To defend against Android malware threats, users are advised to refrain from downloading applications or updates from unverified sources outside Google Play and ensure that Play Protect is active on their devices as a proactive defense measure. 🛡️     Read more 🔎>> Link in the comments  #Cybersecurity #AndroidSecurity #Malware #Android #GoogleChrome #Brokewell 

With The Hacker News reporting "10,000 Victims a Day" from infostealer malware, should companies offering web apps with sensitive data—like telehealth sessions or crypto exchanges—do more to protect customers, even when malware is on their device? Learn more about the latest infostealers: https://lnkd.in/ddyK9pbJ Shouldn't all banks and healthcare providers be protecting consumer sessions, no matter what's on their device? See how MirrorTab eliminates the browser attack surface by converting web app content into pixels, keeping your customers safe from infostealers, malicious extensions, and MitB attacks while accessing your online web apps: https://lnkd.in/etRUdXrW #cybersecurity #infostealers #MitB #websecurity #browsersecurity #MirrorTab

Researchers warn of a spat of fake Android Apps that drop malware onto mobile phones. 5 malware dropper apps have been named so far: ☠ Phone Cleaner - File Explorer (com.volabs.androidcleaner) ☠ PDF Viewer - File Explorer (com.xolab.fileexplorer) ☠ PDF Reader - Viewer & Editor (com.jumbodub.fileexplorerpdfviewer) ☠ Phone Cleaner: File Explorer (com.appiclouds.phonecleaner) ☠ PDF Reader: File Manager (com.tragisoap.fileandpdfmanager) https://buff.ly/3SO1A8A #cybercrime #android #apps #malware #bleepingcomputer #CommSec

A concerning development in Android security has surfaced as security researchers uncover a new version of the Vultur trojan disguising itself as McAfee Security app. This malicious software poses a significant threat, granting hackers access to sensitive information stored on your Android device. Initially detected by ThreatFabric in 2022 being distributed via Google Play Store, this insidious malware has now resurfaced in a more potent form in 2024, as reported by Fox-IT, part of the NCC group. Operating under the guise of McAfee Security, Vultur infiltrates devices through deceptive means, prompting users to download the infected application from purportedly official sources. Vultur operates by enticing unsuspecting users through SMS messages, urging them to download a fake McAfee Security app. Once installed, the malware gains access to crucial device functions, enabling hackers to intercept sensitive data and even remotely control the infected device. To safeguard against such threats, it's crucial to exercise caution when downloading apps and to grant permissions judiciously, ensuring the security of your Android device and personal information. #Android #itnews #zhdconsulting For all your IT needs, feel free to get in touch with us via phone at +2638677107049 or WhatsApp at +263772459312 X: https://lnkd.in/dsDUR9xa Instagram: https://lnkd.in/dRw955dG Facebook: https://lnkd.in/dZT6mvKj

Play it safe and download smart! Stick to official app stores (Google Play, Apple App Store) and websites to avoid malware. Malware can steal sensitive data, such as banking credentials, and your system can be infected via so many ways - for instance, by opening attachments from unsolicited emails or downloading applications from unknown sources. Hackers can hide malicious code in fake apps or apps downloaded from unofficial and suspicious sources, so be cautious where you download from. 📢 Share this post so more people can be alert ⚠️ #cybersecurity #cybersecurityawareness #cybersectipoftheweek