Tag

Dropper As A Service

All articles tagged with #dropper as a service

mobile-security-malware2 years ago•2 min saved

Beware: Android Dropper-as-a-Service Evades Google's Defenses

SecuriDropper, a new dropper-as-a-service (DaaS) for Android, has been discovered by cybersecurity researchers. This malware bypasses Google's new security restrictions and delivers the payload. SecuriDropper disguises itself as harmless apps and uses a different Android API to install the payload, mimicking the process used by marketplaces. It bypasses Google's Restricted Settings by requesting permissions to read and write data to external storage, as well as install and delete packages. Android banking trojans like SpyNote and ERMAC have been distributed via SecuriDropper on deceptive websites and third-party platforms. Another similar dropper service called Zombinder has also been observed offering a Restricted Settings bypass.

via The Hacker News|

#android #cybersecurity #dropper-as-a-service

cybersecurity2 years ago•3 min saved

"SecuriDropper: Android Cybercrime Service Bypasses Google's Security with Malware"

A new cybercrime operation called 'SecuriDropper' has been discovered, using a method to bypass Android's 'Restricted Settings' feature and install malware on devices. This feature was designed to prevent side-loaded applications from accessing powerful features like Accessibility Services and Notification Listener. SecuriDropper poses as legitimate apps, such as Google apps or security apps, and installs a second payload that is some form of malware. The operation obtains permissions through user deception and interface manipulation. This is the first observed case of this method being used in cybercrime operations targeting Android users.

via BleepingComputer|

#accessibility-services #android-security #cybercrime