By Warren Mercer and Paul Rascagneres.


Introduction
Attackers are capitalizing on the recent discovery of a new vulnerability that exists across legacy iOS hardware. Cisco Talos recently discovered a malicious actor using a fake website that claims to give…

Fake-AV Found on Google Play 1,000+ Installs https://t.co/oqDiHtfhQy

The scammers behind this app have released 26 apps, under 3 different names, with a total of over 8,000,000 downloads. @GooglePlay: It's time to do something! Developer accounts: - https://t.co/xn8ExycwM9 - https://t.co/9IoddRqg6u - https://t.co/YSh1jEKS0y…

Doctor Web has detected a clicker trojan that can automatically subscribe users to paid services in the official Android app store.

Hiddad app found on Google Play 100,000+ Installs Display Ads with full screen https://t.co/WFf61QP9Ww

As we began to analyze the UC Browser app, we found requests were being made to download an additional APK over an unsecured channel.

Hiddad app Packed with Jiagu packer found on Google Play 500,000+ Installs after install hides it's icon from the App Drawer and running in the background. https://t.co/0cPl31uuhN

Three Joker app's found on Google Play: https://t.co/apqhtPsAcp https://t.co/QZgD6Yj6Nt https://t.co/UBXuVj4nW3

And more #joker samples: com.billiards.wallpapers - October 18, 2019, 10,000+ com.peculiarwallpaper.wpshow - October 15, 2019, 50,000+ com[.de.sourceforge.opencamera - October 16, 2019, 10,000+ com.zima.latest.gamelist - October 15, 2019, 100,000+ #malware…

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group

Neue Fake Bluewin App ist im Google Play Store aufgetaucht. Bitte nicht installieren und auf keinen Fall Zugangsdaten eingeben. Auftrag zur Entfernung ist bereits unterwegs. #staysafe #bluewin ^Mike

We found 49 new adware apps on the Google Play Store, disguised as games and stylized cameras. Before they were taken down, the total number of downloads for these apps was more than 3 million.

New Android banking Trojan family #Ginp targeting Spain 🇪🇸 and UK 🇬🇧. Latest versions imitate Adobe Flash Player and decrypt payload from assets. Abuses Accessibility Service, sets itself as default SMS app, gets phishing injects from C&C server. (1/2)

ESET researchers have uncovered 42 popular adware-laced Android apps in Google Play and tracked down the rogue developer.

Wandera’s threat research team has discovered 17 apps on the Apple App Store that are infected with clicker trojan malware.

Summary NFC beaming of applications between devices using Android OS bypasses some security controls (the “install unknown application” prompt). A rogue device like a payment terminal c…

#Joker Trojans are appearing on Google Play almost every day. More fake apps added on Oct 26 and still available: https://t.co/2QtrVAooXh https://t.co/0WAMRGjy6t https://t.co/rCLbI9vQVA https://t.co/CnwFbokLV7

Two more #Joker Trojans 55.000+ installs : https://t.co/QUmQHZcCev https://t.co/Ii9ttzvPl0