Untold story of Marcus Hutchins arrest and history of creating Kronos banking malware
https://www.wired.com/story/confessions-marcus-hutchins-hacker-who-saved-the-internet/
https://www.wired.com/story/confessions-marcus-hutchins-hacker-who-saved-the-internet/
WIRED
The Confessions of the Hacker Who Saved the Internet
At 22, Marcus Hutchins put a stop to the worst cyberattack the world had ever seen. Then he was arrested by the FBI. This is his untold story.
Reversing “V-Alert COVID-19” Android/BankBot
https://medium.com/@cryptax/reversing-v-alert-covid-19-android-bankbot-8809c7389f13
https://medium.com/@cryptax/reversing-v-alert-covid-19-android-bankbot-8809c7389f13
Medium
Reversing “V-Alert COVID-19” Android/BankBot
On May 1, 2020, a new version of Android BankBot (aka Anubis, Nautilus Bot) was spotted. The malware poses as an COVID-19 alert…
Forwarded from The Bug Bounty Hunter
iOS Swift Anti-Jailbreak Bypass with Frida https://syrion.me/blog/ios-swift-antijailbreak-bypass-frida/
Deep research on Android Spyware Framework - Mandrake - that is active since 2016
https://www.bitdefender.com/files/News/CaseStudies/study/329/Bitdefender-PR-Whitepaper-Mandrake-creat4464-en-EN-interactive.pdf
https://www.bitdefender.com/files/News/CaseStudies/study/329/Bitdefender-PR-Whitepaper-Mandrake-creat4464-en-EN-interactive.pdf
Tracing iOS Kernel Functions - Building a Kernel Function Trace Tool for Security Research
https://youtu.be/qm_oLQFGRsQ
https://youtu.be/qm_oLQFGRsQ
YouTube
Tracing iOS Kernel Functions - Building a Kernel Function Trace Tool for Security Research
Hey guys! Today we're taking a look at a project I've been working on recently - a kernel function tracing tool!
Hopefully you enjoy!
Follow me on Twitter - https://twitter.com/bellis1000
Hopefully you enjoy!
Follow me on Twitter - https://twitter.com/bellis1000
FBI and CISA shared list of top 10 routinely exploited vulnerabilities
https://www.us-cert.gov/ncas/alerts/aa20-133a
https://www.us-cert.gov/ncas/alerts/aa20-133a
us-cert.cisa.gov
Top 10 Routinely Exploited Vulnerabilities | CISA
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the broader U.S. Government are providing this technical guidance to advise IT security professionals at public and private sector organizations to…
Android Malware in COVID-19 Clothes Steals SMS and Contacts
https://labs.bitdefender.com/2020/05/android-malware-in-covid-19-clothes-steals-sms-and-contacts/
https://labs.bitdefender.com/2020/05/android-malware-in-covid-19-clothes-steals-sms-and-contacts/
Bitdefender Labs
Android Malware in COVID-19 Clothes Steals SMS and Contacts
Criminals are using an old certificate to sign a malware that takes advantage of
the COVID-19 pandemic situation, preying on people’s need for information.
the COVID-19 pandemic situation, preying on people’s need for information.
Android WolfRAT analysis (new version of DenDroid)
https://blog.talosintelligence.com/2020/05/the-wolf-is-back.html
https://blog.talosintelligence.com/2020/05/the-wolf-is-back.html
Cisco Talos Blog
The wolf is back...
By Warren Mercer, Paul Rascagneres and Vitor Ventura.
News summary
* Thai Android devices and users are being targeted by a modified version of DenDroid we are calling "WolfRAT," now targeting messaging apps like WhatsApp, Facebook Messenger and Line.…
News summary
* Thai Android devices and users are being targeted by a modified version of DenDroid we are calling "WolfRAT," now targeting messaging apps like WhatsApp, Facebook Messenger and Line.…
Banking Trojan found on Google Play
Using Accessibility it steals all the displayed text from launched apps (banking apps, SMS, WhatsApp messages, Google Authenticator...)
It can also remotely launch apps, perform controlled clicks, input text...
https://www.welivesecurity.com/2020/05/22/insidious-android-malware-gives-up-all-malicious-features-but-one-gain-stealth/
Using Accessibility it steals all the displayed text from launched apps (banking apps, SMS, WhatsApp messages, Google Authenticator...)
It can also remotely launch apps, perform controlled clicks, input text...
https://www.welivesecurity.com/2020/05/22/insidious-android-malware-gives-up-all-malicious-features-but-one-gain-stealth/
WeLiveSecurity
Insidious Android malware gives up all malicious features but one to gain stealth
ESET researchers have analyzed an extremely dangerous Android app that can wipe out the victim’s bank account or cryptocurrency wallet and take over their email or social media accounts. Called "DEFENSOR ID", the banking trojan requires a single action from…
Modding a Unity C++ Android Game
https://www.areizen.fr/post/modding-unity-game/
https://www.areizen.fr/post/modding-unity-game/
The first public jailbreak for Apple's iOS operating system that should work at launch on all iOS devices
https://www.vice.com/en_us/article/dyz8nw/iphone-ios-ios13-jailbreak-uncover-unc0ver
https://www.vice.com/en_us/article/dyz8nw/iphone-ios-ios13-jailbreak-uncover-unc0ver
VICE
Hackers Just Dropped a Jailbreak They Say Works for All iPhones
The new unc0ver jailbreak relies on a vulnerability that the researcher who found it says Apple is unaware of.
👍2
StrandHogg 2.0 - The 'evil twin' vulnerability (CVE-2020-0096)
Vulnerability allows malware app to pose as legitimate apps
https://promon.co/strandhogg-2-0/
Vulnerability allows malware app to pose as legitimate apps
https://promon.co/strandhogg-2-0/
promon.io
StrandHogg 2.0 - Android Vulnerability | Promon
Promon researchers have discovered a new elevation of privilege vulnerability in Android that allows hackers to gain access to almost all apps.
Fraudsters spread a mobile trojan disguised as a Valorant game
https://news.drweb.com/show/?lng=en&i=13838
https://news.drweb.com/show/?lng=en&i=13838
Dr.Web
Fraudsters spread a mobile trojan disguised as a Valorant game
Doctor Web specialists have uncovered a fraudulent campaign targeting mobile device owners. Cybercriminals are publishing misleading videos on YouTube, promoting a mobile version of a new Valorant game and prompting unsuspecting users to install it on their…
This wallpaper triggers a rare bug causing Android devices to bootloop
https://www.xda-developers.com/wallpaper-triggers-rare-bug-causing-android-devices-bootloop/
https://www.xda-developers.com/wallpaper-triggers-rare-bug-causing-android-devices-bootloop/
XDA
[Update 2: Fixed] This wallpaper triggers a rare bug causing Android devices to bootloop
This wallpaper triggers a rare bug that causes Android devices to bootloop. Don't try the wallaper on your device or you may lose all your data.
Coldboot vulnerability affecting 7 years of LG Android devices CVE-2020-12753
https://douevenknow.us/post/619763074822520832/an-el1el3-coldboot-vulnerability
https://douevenknow.us/post/619763074822520832/an-el1el3-coldboot-vulnerability
Tumblr
🔋 📱❄️🥾🔓, an EL1/EL3 coldboot vulnerability affecting 7 years of LG Android devices
I should probably preface all of this by saying that I'm not really a security professional in the sense that I don't actually do security stuff for a living; I reported this vulnerability in March...
Popular Android malware threats in May, 2020
List: http://skptr.me/malware_timeline_2020.html
Samples: https://github.com/sk3ptre/AndroidMalware_2020
List: http://skptr.me/malware_timeline_2020.html
Samples: https://github.com/sk3ptre/AndroidMalware_2020
GitHub
GitHub - sk3ptre/AndroidMalware_2020: Popular Android malware seen in 2020
Popular Android malware seen in 2020. Contribute to sk3ptre/AndroidMalware_2020 development by creating an account on GitHub.
Barcode Reader Apps on Google Play Found Using New Ad Fraud Technique
https://blog.trendmicro.com/trendlabs-security-intelligence/barcode-reader-apps-on-google-play-found-using-new-ad-fraud-technique/
https://blog.trendmicro.com/trendlabs-security-intelligence/barcode-reader-apps-on-google-play-found-using-new-ad-fraud-technique/