Your Malware Would Like To Phone a Friend

 
Threat Advisory: Operation Pawn Storm In October 2014, Trend Micro disclosed a widespread malware campaign called Operation Pawn Storm. On Wednesday, Trend Micro released an update on how threat actors are using new tactics to improve the effectiveness of this campaign (or at least a new campaign which is using the same XAgent malware). Lacoon is providing this threat advisory to ensure you have as much information as possible about these developments. What is Operation Pawn Storm? Operation Pawn Storm is a campaign to steal valuable information from high-profile economic and political targets. Victims have included military and embassy personnel, and ...

Clever and Persistent Android Banking Trojan Discovered

 
A new Android banking trojan that specializes in stealing information by intercepting specific SMS messages has been discovered in the wild. Although still without an official name, the malware is being circulated under the name 888.apk. Below is our rundown of the threat as well several conclusions from our research team. What exactly is 888.apk? 888.apk is an mRAT (Mobile Remote Access Trojan) which primarily steals banking details, but also performs several secondary forms of malicious activity: The mRAT uses keyword filters to specifically extract banking details. For example, while going over all of the victim’s messages, it searches ...

Cyberthieves Can Score a Data Touchdown with Unencrypted Apps

 
With the Superbowl just behind us, the NFL has been getting it’s usual burst of publicity, but not all of it has been good. This time, it wasn’t the players who got into trouble - it was the NFL’s official app. Ohad Bobrov is co-founder and CTO at Lacoon Mobile Security. Until an urgent fix was made available just after the app’s release, NFL’s official app for iOS and Android placed users at risk by leaking their usernames, passwords, and e-mail addresses in plain text to anyone who may be monitoring the traffic. The problem, sources say, was a lack of encryption in an API the app used to communicate with ...