Kev tshawb pom tsis ntev los no los ntawm cov kws paub txog kev ruaj ntseg tau qhia txog qhov muaj tus kab mob malware uas tshwj xeeb rau cov neeg siv Android hauv Asmeskas, Canada, Ltalis, Portugal, Spain, thiab Belgium.
Lub npe hu ua Xenomorph, cov neeg ua txhaum tom qab qhov kev tshaj lij hauv tuam txhab nyiaj hauv tuam txhab trojan tau ua tib zoo coj lawv cov kev siv zog rau cov neeg siv European rau ntau tshaj ib xyoos. Txawm li cas los xij, tsis ntev los no lawv tau nthuav dav lawv cov haujlwm kom suav nrog cov neeg siv khoom ntawm ntau dua 25 Asmeskas cov tuam txhab nyiaj txiag.
Xenomorph tau rov qab los, thiab qhov kev rov ua dua no tseem ua rau tuag taus ntau dua li yav dhau los. Tam sim no muaj kev phom sij loj dua, nws tau kis mus rau ntau dua 100 nyiaj txiag thiab cryptocurrency apps, raws li cov kws tshuaj ntsuam.
Phishing Tactics Thiab Malware Distribution
Tam sim no Xenomorph phiaj los nqis tes pib thaum nruab nrab Lub Yim Hli, raws li cov kws tshuaj ntsuam ntawm cybersecurity ruaj khov ThreatFabric, uas tau saib xyuas cov malware cov haujlwm txij li Lub Ob Hlis 2022.
Cov kws sau ntawv malware qhov kev tshaj tawm tshiab kawg suav nrog phishing URLs uas txhawb cov neeg siv hloov kho lawv Chrome browsers thiab rub tawm APK txaus ntshai. Tus malware tseem siv cov txheej txheem overlay los sau cov ntaub ntawv, tab sis tam sim no nws tab tom mus tom qab Asmeskas cov tsev txhab nyiaj thiab ntau yam ntawm cov apps cryptocurrency.
Cov kws tshuaj ntsuam ThreatFabric tau nkag mus rau tus neeg teb xov tooj malware lub payload hosting infrastructure los ntawm kev ua kom zoo dua ntawm tus neeg teb xov tooj cov txheej txheem kev nyab xeeb lax.
Raws li niaj hnub no, kev lag luam cap ntawm cryptocurrencies sawv ntawm $ 1.02 trillion. Daim duab: TradingView.com
Tus malware's Private Loader, Windows cov ntaub ntawv tub sab RisePro thiab LummaC2, thiab Android malware versions Medusa thiab Cabassous yog ntawm lwm qhov teeb meem them nyiaj uas lawv pom muaj.
Ib qho tseem ceeb ntawm qhov tseeb iteration ntawm Xenomorph muaj feem xyuam rau nws cov qib siab thiab hloov tau yooj yim Tsis Siv Neeg txav System (ATS) qauv, uas pab txhawb kev txav mus los ntawm cov nyiaj ntsuab los ntawm cov cuab yeej cuam tshuam rau ib qho kev tswj hwm los ntawm tus neeg tawm tsam.
Xenomorph Mus Tom Qab Nyiaj Txiag
Lub tshuab ATS ntawm Xenomorph malware muaj ntau lub qauv uas ua rau cov neeg ua phem hem thawj kom tau txais kev tswj hwm ntawm cov khoom siv cuam tshuam thiab ua tiav ntau yam kev ua phem.
Cov malware tsom rau Chase, Amex, Ally, Citi Mobile, Citizens Bank, Bank of America, thiab Tshawb nrhiav cov neeg siv khoom txawb. Cov kws tshawb fawb ThreatFabric pom cov qauv trojan tshiab uas tsom Bitcoin, Binance, thiab Coinbase.
Tus kab mob Xenomorph banking tau tsom rau 56 lub tsev txhab nyiaj nyob sab Europe uas siv cov tshuaj ntsuam overlay phishing thaum ntxov 2022. Google Play tau xa nws mus rau ntau dua 50,000 tus neeg siv.
Hadoken Security: Malware Brains
Lub tuam txhab tom qab nws, "Hadoken Security," txhim kho tus kab mob thiab tso tawm cov qauv hloov pauv hloov pauv thaum Lub Rau Hli 2022. Xenomorph yog ib qho ntawm 10 lub tuam txhab lag luam trojans thiab Zimperium "kev hem thawj loj" los ntawm thaum ntawd.
Nyob ntawm cov pej xeem, txhua tus qauv Xenomorph muaj txog ib puas overlays uas tsom ntau lub tsev txhab nyiaj thiab cov apps cryptocurrency.
Lub caij no, cov neeg siv yuav tsum tau ceev faj thaum hais kom hloov kho lawv cov browsers mobile, vim tias cov kev thov no feem ntau zais spyware.
Featured duab los ntawm Bleeping Computer
Tau qhov twg los: https://bitcoinist.com/xenomorph-malware-attacks-us-crypto-community/