Android applications are always an effective tool for cybercriminals in committing bad acts.
According to a report from cybersecurity researchers of SonicWall Capture Labs, many fake Android applications are being distributed on the Google Play Store, with the ability to impersonate popular applications such as Facebook, Instagram, and Google to fool users into installing.
Once installed on the device, these applications will ask users to grant access to accessibility services and device administrator API permissions. With these powers, fake apps can control everything, such as stealing personal data, messages, contacts, call logs, installing malware without the user's knowledge. know.
Malware installed in fake apps can connect to command and control (C2) servers to access data on the device, send SMS messages, open phishing websites, turn on the flashlight camera. camera. camera. It can even impersonate the login page of services such as Facebook, Instagram, LinkedIn, Microsoft, Netflix, PayPal... to steal user login information.
Fake login page to steal user accounts. (SOURCE: SonicWall Capture Labs)
Fake login page to steal user accounts. (SOURCE: SonicWall Capture Labs)
In addition to hiding in fake applications, malware is also distributed through SMS messages and social engineering campaigns. Bad guys will fake applications related to defense and anti-virus services to lure users into installing them.
Researchers also warn of a rise in banking malware on Android. This type of software can collect sensitive information, displaying a fake overlay to trick users into providing bank account login information.
According to Kaspersky, the number of Android users attacked by banking malware has increased by 32% compared to the previous year. The majority of infections were recorded in Türkiye, Saudi Arabia, Spain, Switzerland and India.
Google has just released an emergency update for its Chrome browser because of a new zero-day vulnerability.
According to Android Authority, Google has just released an emergency update for the Chrome browser to patch a serious zero-day vulnerability that can be exploited by hackers to execute malicious code, leak data or cause the browser to crash. collapse.
This vulnerability is considered highly dangerous and affects all versions of Chrome being used on Windows, Mac and Linux.
Chrome browser was discovered to have a dangerous vulnerability.
According to information from Bleeping Computer, this zero-day vulnerability is called CVE-2024-4671 and is related to the visuals component of Chrome. This vulnerability allows hackers to exploit freed memory to execute malicious code, steal user data or cause other dangerous acts.
Specifically, the vulnerability occurs when a program still tries to access a dynamic memory location even after that memory location has been freed. This freed memory can be used to store other data or used by other software. This error can lead to consequences such as data leakage, malicious code execution, or causing the browser to stop working.
See more beautiful photo albums Here >>>
Google recommends that all Chrome users update to the latest version as soon as possible to patch this dangerous vulnerability. The update can be downloaded automatically or manually via the three-dot menu > Settings > About Chrome.