Tag

Evasion

All articles tagged with #evasion

cybersecurity2 years ago•1 min saved

"FjordPhantom Android Malware: Evading Detection and Targeting Southeast Asian Banking Apps"

FjordPhantom, a new Android malware, has been discovered using virtualization to run malicious code in a container and evade detection. The malware spreads through emails, SMS, and messaging apps, targeting banking apps in Southeast Asian countries. FjordPhantom tricks victims into downloading seemingly legitimate banking apps that contain malicious code running in a virtual environment. It aims to steal online bank account credentials and manipulate transactions. By incorporating a virtualization solution, the malware breaks the Android Sandbox security concept and can inject its code into trusted processes. This sneaky attack method bypasses code tampering detection and hampers root-related security checks. The malware's active development raises concerns about its potential expansion to other countries.

via BleepingComputer|

#android-malware #banking-apps #cybersecurity

gaming2 years ago•2 min saved

Genshin Impact Developer's Attempt to Dodge Apple's 30% Cut Exposed

Chinese game developer miHoYo, known for the popular mobile game Genshin Impact, attempted to evade Apple's 30% cut on in-app purchases not once, but twice. Despite a close relationship with Apple, including awards and recognition, miHoYo instructed users to make in-game purchases through its website and later introduced a new payment method in Alipay. Apple responded by removing the forum app and disabling the payment feature. Gaming research company Niko Partners predicts that other companies will also attempt to drive in-game purchases outside of traditional app stores to increase profits.

via 9to5Mac|

#apple #evasion #gaming

politics2 years ago•0 min saved

EU Implements Measures to Combat Russian Sanctions Evasion

The European Union has agreed on measures to target individuals and entities that evade sanctions against Russia. The measures include travel bans and asset freezes, and aim to prevent cross-border trade with Russia by targeting those who facilitate such trade. The move comes amid ongoing tensions between the EU and Russia over issues including the conflict in Ukraine and the poisoning of opposition leader Alexei Navalny.

via Financial Times|

#cross-border-trade #eu #evasion

cybersecurity2 years ago•3 min saved

Double DLL sideloading and browser extension abuse: New tactics for evading detection

A Chinese-speaking APT hacking group known as "Dragon Breath" or "Golden Eye Dog" is using complex variations of the classic DLL sideloading technique to evade detection. The group is targeting Chinese-speaking Windows users in China, Japan, Taiwan, Singapore, Hong Kong, and the Philippines with trojanized Telegram, LetsVPN, or WhatsApp apps. The attack variations involve double DLL sideloading, which achieves evasion, obfuscation, and persistence, making it harder for defenders to adjust to specific attack patterns and effectively shield their networks. The final payload is a backdoor that supports several commands, including stealing digital assets from victims' MetaMask cryptocurrency wallets.

via BleepingComputer|

#apt #backdoor #cryptocurrency