HackDig : Dig high-quality web security articles for hackers

Android Enterprise Adds Flexibility But Still Calls for UEM Solutions

With the deployment of Android 10 on all new smartphones comes Android Enterprise, previously known as Android for Work. Even though it has its roots in Android 5.0 (Lollipop) launched in 2014, it is now a mandatory feature on all Android 10 devices when managed with an enterprise mobility management (EMM) solution. Android Enterprise’s Flexible Deploy
Publish At:2020-04-08 07:29 | Read:516 | Comments:0 | Tags:Endpoint Mobile Security Risk Management Android Android App

Malicious Optimizer and Utility Android Apps on Google Play Communicate with Trojans that Install Malware, Perform Mobil

By Lorin Wu (Mobile Threats Analyst) We recently discovered several malicious optimizer, booster, and utility apps (detected by Trend Micro as AndroidOS_BadBooster.HRX) on Google Play that are capable of accessing remote ad configuration servers that can be used for malicious purposes, perform mobile ad fraud, and download as many as 3,000 malware variants
Publish At:2020-02-06 14:35 | Read:653 | Comments:0 | Tags:Malware Mobile android google play malicious apps Mobile Ad

Fleeceware is back in Google Play – massive fees for not much at all

byPaul DucklinLast September, we wrote about “fleeceware“, a term we coined to describe apps that charge huge amounts but give you very little in return.Technically, the apps themselves aren’t malware, because the code in the app doesn’t do anything illegal, dangerous, sneaky, snoopy, subversive or surreptitious.The treachery lies in
Publish At:2020-01-14 12:40 | Read:562 | Comments:0 | Tags:Android Google fleeceware Google Play play store

First Active Attack Exploiting CVE-2019-2215 Found on Google Play, Linked to SideWinder APT Group

by Ecular Xu and Joseph C Chen We found three malicious apps in the Google Play Store that work together to compromise a victim’s device and collect user information. One of these apps, called Camero, exploits CVE-2019-2215, a vulnerability that exists in Binder (the main Inter-Process Communication system in Android). This is the first known active attack i
Publish At:2020-01-06 14:35 | Read:816 | Comments:0 | Tags:Exploits Mobile app APT google play exploit

49 Disguised Adware Apps With Optimized Evasion Features Found on Google Play

By Jessie Huang We recently found 49 new adware apps on Google Play, disguised as games and stylized cameras. These apps are typical adware, hiding themselves within mobile devices to show ads and deploying anti-uninstall and evasion functions. These apps are no longer live but before they were taken down by Google, the total number of downloads was more tha
Publish At:2019-11-12 02:35 | Read:1179 | Comments:0 | Tags:Mobile apps google play mobile adware

Fake Photo Beautification Apps on Google Play can Read SMS Verification Code to Trigger Wireless Application Protocol (W

By Song Wang (Mobile Threat Analyst) At the start of the year, Google updated its permission requests in Android applications, and in particular, restricted access to SMS and CALL Log permissions. Google also added requirements for non-default applications (or those that don’t provide critical core features), allowing them to prompt and ask users for permiss
Publish At:2019-10-18 14:35 | Read:2722 | Comments:0 | Tags:Mobile Social android Carrier Billing google play WAP Billin

Gambling Apps Sneak into Top 100: How Hundreds of Fake Apps Spread on iOS App Store and Google Play

By Todd Han and Junzhi Lu (Mobile Threats Analysts) Google Play and iOS App store are no strangers to fake apps trying to trick users into downloading ad- or malware-ridden versions. We have previously reported on fake Android voice apps on Google Play, which were observed to be impostor apps for voice messenger platforms. Recently, we also uncovered counter
Publish At:2019-09-26 08:20 | Read:1461 | Comments:0 | Tags:Mobile App Store fake apps gambling google play IOS

Premium SMS malware EXPENSIVEWALL infected millions of Android handsets

Google removed 50 malicious apps from the official Play Store after experts discovered a new malware, dubbed ExpensiveWall, eluded Google Bouncer checks. Google has removed 50 malicious apps from the official Play Store after experts with security firm Check Point discovered a new malware, dubbed ExpensiveWall,  eluded the checks of the Google’s Bounce
Publish At:2017-09-15 16:40 | Read:3572 | Comments:0 | Tags:Breaking News Cyber Crime Malware Mobile Android ExpensiveWa

BankBot Found on Google Play and Targets Ten New UAE Banking Apps

By Kevin Sun The Android-targeting BankBot malware (all variants detected by Trend Micro as ANDROIDOS_BANKBOT) first surfaced January of this year and is reportedly the improved version of an unnamed open source banking malware that was leaked in an underground hacking forum. BankBot is particularly risky because it disguises itself as legitimate banking app
Publish At:2017-09-13 15:50 | Read:4584 | Comments:0 | Tags:Malware Mobile android bankbot google play

O Me, O My! Android O and Its Impact on the Enterprise

As the summer winds down, the next big wave of mobile OS updates is upon us — a seasonal trend that brings about excitement and positive change for both consumers and security leaders. With Google Android O version 8.0 set for imminent release, we’ve lined up some new features to look out for in the context of the mobile enterprise to ensure that you
Publish At:2017-08-08 16:20 | Read:3319 | Comments:0 | Tags:Mobile Security Android Android Apps Android Security Google

After Big Takedown Efforts, 20 More BankBot Mobile Malware Apps Make It Into Google Play

A flashlight app, fake videos or a fake gaming app? Any one of those could be malicious and harboring a mobile malware app, right there in a trusted official app store. In an ongoing trend, IBM X-Force noted that malicious apps manage to circumvent controls and infiltrate legitimate stores. And this is not about the plethora of adware apps infecting users in
Publish At:2017-07-28 03:30 | Read:5298 | Comments:0 | Tags:Banking & Financial Services Fraud Protection Malware Mobile

Charger Android Ransomware Spread via the Official Google Play App Store

We all know that ransomware is a growing problem for businesses and home users alike, and that most of it is targeted against Windows users.And we’re also familiar with warnings to avoid downloading Android apps from third-party marketplaces rather than officially-sanctioned ones such as the Google Play marketplace.But infosecurity is not a world of ab
Publish At:2017-01-25 09:35 | Read:4509 | Comments:0 | Tags:Cryptography Featured Articles IT Security and Data Protecti

Four spyware apps removed from Google Play

We identified the Overseer malware in an application that claimed to provide search capabilities for specific embassies in different geographical locations.  Through close collaboration with an enterprise customer, Lookout identified Overseer, a piece of spyware we found in four apps live on the Google Play store. One of the apps was an Embassy search tool
Publish At:2016-09-16 10:00 | Read:3079 | Comments:0 | Tags:Security android business travel Embassy Google Play mobile

Fake Pokémon Go app on Google Play infects phones with screenlocker

Badware purveyors trying to capitalize on the ongoing Pokémon Go frenzy have achieved an important milestone by sneaking their fake wares into the official Google Play marketplace, security researchers said Friday.Researchers from antivirus provider Eset report finding at least three such apps in the Google-hosted marketplace. Of the three, the one titled "P
Publish At:2016-07-16 04:05 | Read:4807 | Comments:0 | Tags:Gear & Gadgets Risk Assessment Technology Lab android google

LevelDropper: A takedown of autorooting malware in Google Play

LevelDropper, an app in the Google Play Store that we determined to be malicious, is the latest example of a new and persisting trend in mobile threats: autorooting malware. Lookout discovered the app last week and worked with Google to have it removed. All Lookout customers are protected from this threat. At first glance, LevelDropper seemed to be a simple
Publish At:2016-06-27 16:00 | Read:3967 | Comments:0 | Tags:Security android autorooting malware Braintest compromised o

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud