NewApp Digest
search bot

dangerous malware

Popular Android financial help app is actually dangerous malware
AppWizard
February 25, 2025

Popular Android financial help app is actually dangerous malware

Cybersecurity researchers discovered a predatory loan application called SpyLoan on the Google Play Store, which targeted Indian consumers and achieved around 100,000 downloads before being removed. The app presented itself as a financial management tool but required extensive permissions, accessing sensitive user information. User reviews indicated experiences of blackmail and low loan amounts. SpyLoan falsely claimed affiliation with a registered non-banking financial company and redirected users to download a separate loan application from an external site, circumventing some Google safeguards. Google confirmed the app's removal and stated that Android devices are protected against known malware through Google Play Protect.
New Scareware Attack Targeting Mobile Users to Deploy Malicious Antivirus Apps
Tech Optimizer
February 7, 2025

New Scareware Attack Targeting Mobile Users to Deploy Malicious Antivirus Apps

A recent increase in scareware attacks is targeting mobile users, aiming to trick them into downloading malicious antivirus applications. These attacks use alarming notifications to exploit users' fears about device security. Analysts from Kaspersky Lab note that scareware often employs social engineering techniques to create urgency and fear, masquerading as legitimate software. Victims may encounter a range of consequences, from ineffective programs to dangerous malware that can encrypt data or steal financial information. Scareware messages typically warn users of detected viruses and the risks of not acting quickly. Malicious applications often use JavaScript or HTML to generate fake alerts. Users are advised to install authentic antivirus software from reputable sources, keep their devices updated, and be cautious with unexpected pop-ups.
Watch out, that Excel document could be infected with dangerous malware
Winsage
November 12, 2024

Watch out, that Excel document could be infected with dangerous malware

A new phishing campaign is using an Excel file to distribute a fileless version of the Remcos Remote Access Trojan (RAT). Researchers from Fortinet found that attackers are sending purchase order emails with an Excel attachment that exploits a remote code execution vulnerability in Office (CVE-2017-0199). Activating the file downloads an HTML Application (HTA) file from a remote server, which is launched via mshta.exe.malware. Remcos can log keystrokes, capture screenshots, and execute commands on compromised systems. This variant operates without leaving traditional file traces, making detection more difficult. Email phishing is a common method for cybercriminals to infect devices and steal sensitive information. Users are advised to be cautious with emails and attachments.
New Google Play Store Warning As Dangerous Threat Returns
AppWizard
July 5, 2024

New Google Play Store Warning As Dangerous Threat Returns

Google's Play Store is facing a reappearance of dangerous malware known as Anatsa, a banking trojan that steals financial information. Despite previous assurances from Google about removing malicious apps, Anatsa has resurfaced disguised as a QR reader and file manager. Users are advised to stick to official app stores, check developers and reviews, avoid unnecessary permissions, avoid clicking on links for app downloads, and be cautious with installing apps linked to popular ones.
Search