A new Android malware family on the Google Play Store that secretly subscribes users to premium services was downloaded over 3,000,000 times. The malware, named 'Autolycos,' was discovered to be in at least eight Android applications The two apps still available are named 'Funny Camera' by KellyTech, which has over 500,000 installations, and 'Razer Keyboard Theme' by rxcheldiolola, which counts over 50,000 installs on the Play Store.
Cyber threats are evolving every day, keeping up with them is a full-time job. The WESTprotect Cyber News is your source for how these changes affect you in the real estate, title, mortgage, and settlement services industry. From cyber threats to new Tactics, Techniques, and Procedures (TTP’s) we’ve got you covered.
Earlier this week, US-led sanctions on Russia for its invasion of Ukraine have sparked considerable concern about retaliatory and spillover cyberattacks from the region on US organizations and those based in other allied nations. Many expect the attacks to run the gamut from destructive campaigns involving the use of disk-wipers and ransomware to distributed-denial-of-service attacks, phishing, disinformation, misinformation, and influence campaigns.
While legitimate concerns abound about the Russian-Ukrainian conflict sparking a far-reaching cyberwarfare conflagration around the globe, small-time crooks are also ramping up their efforts amid the crisis. Phishing emails to Microsoft users warning of Moscow-led account hacking have started to make the rounds, looking to lift credentials and other personal details.
Security researchers warn that some attackers are compromising Microsoft Teams accounts to slip into chats and spread malicious executables to participants in the conversation. Researchers found that hackers started to drop malicious executable files in conversations on Microsoft Teams communication platform. The attacks started in January, the threat actor inserts in a chat an executable file called “User Centric” to trick the user into running it.
The US Federal Bureau of Investigation (FBI) revealed that the BlackByte ransomware group has breached the networks of at least three organizations from US critical infrastructure sectors in the last three months. "As of November 2021, BlackByte ransomware had compromised multiple US and foreign businesses, including entities in at least three US critical infrastructure sectors (government facilities, financial, and food & agriculture).," the federal law enforcement agency said.