Moises Polishuk’s Post

Very important to ensure, your Cell Phone cybersecurity, cellular security and application security is secure. #Malware is in the air.

Trending Malware of the Week Type: Infostealer Objective: Credential Stealing, Financial Theft Target Technologies: WhatsApp, AWS, WordPress, Browsers Active Malware of the Week This week “Chae$” is trending. Chae$ #Chae$ is a malicious program designed for information theft, focusing on acquiring log-in credentials, credit card details, and other sensitive financial information as its primary functionalities. Researchers recently found Chae$ 4.1, the latest update in the Chae$ #malware Infostealer series, as part of their ongoing efforts to monitor and analyze emerging cyber threats. The update includes enhancements to the Chronod module and introduces a unique aspect to its features. Continue reading: https://bit.ly/3HDHAQI #CyberSecurity #Cyfirma #ETLM #externalthreatlandscape #ThreatIntelligence #CyberIntelligence #CYFIRMAResearch Kumar Ritesh Dr. Saurabh Lal, P.D. Michael Henry Anna Koh Amit Thakur Harry Lee Glaiza Pardilla Harsha Vardhan Sam Parmar Rahul Raghav Yusuke Tateno Chiaki Izena（伊是名千晶）Greg Baylis David Plummer Rakesh R V Nicko Navarrete Ruri Apriyanto Hyungchan Mike Cho Montai Saiaroon Huy. Nguyen Tuong Vinh Dudley Swanepoel Mouli Saha

Dear colleagues and friends, I urge caution regarding the use of the Temu e-commerce app. The National Office for Cyber and Information Security (NCIS) is currently investigating the app due to serious security concerns. Independent analysis by Grizzly Research indicates that Temu may contain hidden malware/spyware functionality. That includes: Temu may track user information without explicit consent. The app has access to cameras, microphones, and the ability to install software packages, potentially allowing remote compromise of devices. In good IT health, from Digital Trans4orMation #malware #spyware #cybersecurity

EVOLUTION OF MOBILE MALWARE Mobile devices have become an integral part of our lives, but they also pose a serious threat to our security and privacy. Mobile malware, or malicious software designed to exploit vulnerabilities in mobile devices and operating systems, has evolved from simple SMS and contact list attacks to sophisticated techniques that can compromise personal data, passwords, financial information, and even control over the device itself. According to a recent research report, between 2021 and 2022 the total number of unique mobile malware samples rose 51%. Some of the most common types of mobile malware include viruses, worms, Trojans, adware, and spyware. These can spread through various channels, such as malicious apps, phishing emails, SMS messages, Bluetooth, Wi-Fi, and QR codes. One of the most notorious examples of mobile malware is CherryBlos, a stealer that uses optical character recognition (OCR) to extract text from photos and images on Android devices. This malware can steal crypto wallet seed phrases, which users often screenshot and save to their phones, and use them to access and drain the user's crypto funds. As mobile technology advances, so does the complexity and proliferation of mobile malware. Therefore, it is essential to adopt preventive measures to protect ourselves and our devices from these threats. Some of the best practices include: - Installing a reputable antivirus software and keeping it updated - Avoiding downloading apps from unknown or untrusted sources - Checking app permissions and reviews before installing them - Using strong passwords and encryption for sensitive data - Avoiding clicking on suspicious links or attachments - Using a VPN when connecting to public Wi-Fi networks - Regularly backing up data and restoring the device to factory settings if infected Mobile malware is a serious and growing problem that requires our attention and awareness. By following these tips, we can reduce the risk of becoming victims of mobile malware and enjoy the benefits of mobile technology without compromising our security and privacy. #mobilemalware #cybersecurity #mobilesecurity #cyberthreats #cyberawareness

Google is rolling out a trial for a novel Chrome feature dubbed Device Bound Session Credentials (DBSC), aimed at fortifying user defences against session cookie theft by malicious software. This pioneering stage, now being evaluated with a select group of Google Account holders on Chrome Beta, is slated to transition into an open web standard, as highlighted by Google's Chromium division. By anchoring authentication sessions to the individual's device, DBSC is set to significantly undermine the cookie theft market, making the pilfering of these cookies ineffective. This shift mandates that attackers must now manipulate the device directly, thereby boosting the efficiency of local detection and eradication tools for antivirus programs and organisation-controlled devices. This development is a countermeasure to findings indicating that generic information-stealing malware is actively seeking to snatch cookies to sidestep Multi-Factor Authentication (MFA) protocols and unlawfully gain entry into online profiles. The article further delves into the dynamics of cookie-theft activities and DBSC's role in thwarting them. #GoogleChrome #DBSC #CyberSecurity #OnlineSafety #MFA #Antivirus #TechNews

[🇺🇸🇬🇧] The image of this post is a peculiar way of saying: "If you want to go to the original URL, type the link MANUALLY in the browser bar". #alphabetscam #cybersecurity #url [🇪🇸] La imagen de este post es una forma peculiar de decir: "Si quieres ir a la URL original, escribe el enlace MANUALMENTE en la barra del navegador" #estafaalfabeto #ciberseguridad #url 

63% of consumers don't think companies are honest about how they use their personal information, and nearly 48%🚫 have stopped buying from companies due to #privacy concerns🛑. This data confirms the importance of privacy enhancing services🔐. Read the latest article📖 from #SpyInterceptor to protect yourself from malware and strengthen your security 🛡️ https://lnkd.in/dJ2humQK . . . #malware #improveprivacyservices #improveprivacy #security #personalinformation #GooglePlay #iOS #digitalprivacy #RGPD #ArtificialIntelligence

Powerful ‘Brokewell’ Android Trojan Allows Attackers to Takeover Devices 📌 A newly identified Android trojan can steal user information and provide attackers with the ability to take control of infected devices, threat detection company ThreatFabric reports. More in the relevant link... https://lnkd.in/e5UnCXAq #android #trojan #attack #cybersecurity

#Trends #GoogleChrome New Malware Tactics  🚨 Recent reports on malware operations targeting Google Chrome users have surfaced, revealing a concerning exploitation of an undocumented Google Chrome API. In late November 2023, #BleepingComputer shed light on two notorious malware operations, Lumma and Rhadamanthys, utilizing this API to regenerate expired Google authentication cookies stolen in previous attacks. The alarming trend continued with four additional information stealers adopting the same technique – Stealc, Medusa, RisePro, and Whitesnake. Cybersecurity firm CloudSEK recently unveiled that these malicious actors are leveraging a Google OAuth "MultiLogin" API endpoint to craft new, functional authentication cookies as soon as the victim's original stolen cookies expire. Despite attempts to extract more information from Google, the API remains shrouded in mystery, with documentation found solely in Google Chrome's source code. https://lnkd.in/gWyhC3d7

Recommendations Here below, we have mentioned all the recommendations offered by the security researchers at Trend Micro:- 🔹Always download apps from the Google Play store and official app stores that are trusted. 🔹Make sure to keep your system, software, and AV tools updated with the available security patches and updates. 🔹To block threats like these and other malware strains, make sure to install a robust and renowned AV solution. 🔹Before allowing any permissions to apps, make sure to cross-check each permissions carefully. 🔹Do not download any unknown attachments received via email. 🔹Suspicious links could be dangerous, so, do not click on any suspicious links. #malware #androidsecurity #android #mobilesecurity #infosec #infosecurity