Tag

Threatfabric

All articles tagged with #threatfabric

technology1 year ago•4 min saved

"Samsung Galaxy Users Beware: New Android Malware Bypasses Google Play Security"

ThreatFabric has issued a serious warning for Samsung Galaxy users as a malicious campaign targeting Samsung devices has been identified, with a dangerous Android dropper app named Anatsa making headlines. The app, which targets Google's Play Store, poses a significant threat to users by stealing private information, including banking details. Despite Google's efforts to tighten defenses around its Play Store and accessibility permissions, malicious apps continue to find ways to evade detection. Android users are advised to be cautious of casual app installs and carefully consider permission requests before agreeing to them.

via Forbes|

#android #google-play-store #malware

cybersecurity1 year ago•3 min saved

"Anatsa Android Malware Spreads to Millions of Samsung Galaxy Users via Google Play"

The Anatsa banking trojan has infected at least 150,000 Android devices in Europe through dropper apps hosted on Google Play, targeting specific geographic regions and using tactics to bypass security measures. The malware has evolved to abuse Android’s Accessibility Service and employs a multi-staged infection process. Google has removed most Anatsa dropper apps from the store, but the total number of downloads is expected to increase. Android users are advised to scrutinize app permissions and avoid downloading apps from unfamiliar publishers to protect against potential malware threats.

via BleepingComputer|

#accessibility-service #anatsa #android-malware

mobile-security-malware2 years ago•2 min saved

"Anatsa Android Trojan Drains Bank Accounts in US, UK, and Germany"

Anatsa banking trojan is targeting banking customers in the US, UK, Germany, Austria, and Switzerland through dropper apps on the Google Play Store. The trojan steals credentials used to authorize customers in mobile banking applications and performs Device-Takeover Fraud (DTO) to initiate fraudulent transactions. Anatsa has backdoor-like capabilities to steal data and can bypass existing fraud control mechanisms to carry out unauthorized fund transfers. The dropper apps exploit the restricted "REQUEST_INSTALL_PACKAGES" permission to install additional malware on the infected device. ThreatFabric warns that the recent Google Play Store distribution campaigns demonstrate the immense potential for mobile fraud and the need for proactive measures to counter such threats.

via The Hacker News|

#anatsa #banking-trojan #google-play-store