Topics

#1 Fake WhatsApp updates on Google Play abusing Accessibility Service, with 10,000+ installs. Family known since Dec 2018.

Fake WhatsApp updates on #GooglePlay abusing Accessibility Service, with 10,000+ installs. Family known since Dec 2018. Reported pic.twitter.com/lwgVPS8gaF — Tatyana Shishkova (@sh1shk0va) February 1, 2019

#2 Legitimately Exploiting In-App Payment Would you pay over €200/month or €400/month if you forget to unsubscribe after 3 day trial period.

Legitimately Exploiting In-App Payment



Would you pay over €200/month or €400/month if you forget to unsubscribe after 3 day trial period?

This payment is not for functionality but for removing ads.

It is obvious that is not worth that kind of money!https://t.co/TD8YKsXzAS pic.twitter.com/J3smlmlWpu — Lukas Stefanko (@LukasStefanko) February 2, 2019

#3 Banking Trojans in Turkey

Malicious actors faking the original application of Turkish 🇹🇷 Taxation System (@gibsosyalmedya) in @GooglePlay.



Drops a banking malware sample. That's a medium impact threat considering that is mimicking a .gov application. @TRCert pic.twitter.com/dmMWqBmNjz — Nikolaos Chrysaidos (@virqdroid) February 4, 2019

#4 Fake rating in icon

What is this app rating?



Developer created tricky app icon to make potential users believe it has over 4 stars.



Purpose of the app is to trick user into activating 3 day trial for basic photo editing app.

If user forgets to cancel, it costs him €49.99/week. pic.twitter.com/luyrQf9xq8 — Lukas Stefanko (@LukasStefanko) February 4, 2019

#5 MalBus: Popular South Korean Bus App Series in Google Play Found Dropping Malware After 5 Years of Development

#6 Android Phones Can Get Hacked Just by Looking at a PNG Image

#7 First clipper malware discovered on Google Play

#8 Android Q – security features: permissions, clipboard background app restrictions, external storage, background access location permission.

#9 Sophisticated Trojans vs. Fake banking apps

#10 Triout Android Spyware Framework Makes a Comeback, Abusing App with 50 Million Downloads

#11 Android’s Real Security Problem is the Manufacturers

#12 Doctor Web warns: Cybercriminals spread Android Trojans via Instagram

#13 Clientor Android malware makes a proxy out of your phone

#14 Project – Android App Watch

#15 Beware the Password Cloud password manager app

#16 Insecure PDF-to-Word Convertor app

#17 Google Play Protect in 2018: New updates to keep Android users secure

#18 Fake Apex Legends apps spread via YouTube

Remember #Fortnite Android malware?



Now, fake @PlayApex app spreads via YouTube video with link to actual APK that needs to be manually installed.

Video has over 600K views and 100K clicks on APK link in 5 days.



APK is not available now, but this can be easily changed by admin pic.twitter.com/til021wIPr — Lukas Stefanko (@LukasStefanko) February 23, 2019

#19 Facebook will shut down its spyware VPN app Onavo

#20 Android Banking Trojan found on Google Play targeting Poland

#21 Android Banking Malware – Anubis – found with 14K+ link clicks in one day

#Android #malware distributed via bitly links with over 16k clicks.

Dropped APK is #BankBot #Anubis banking trojan that mimics Facebook update.

Twitter account is still up and running.

C2 handle: https://t.co/ttUxog3QRc

C2: hxxp://blackleaf[.]top pic.twitter.com/08JhDN9xnb — Witold Precikowski (@pr3wtd) February 20, 2019

#22 Android banking malware found on Google Play with 10K+ installs

Android banking malware found on Google Play with 10K+ installs



Trojan impersonated Word Translator and targeted banking apps in Czech republic 🇨🇿 and Poland 🇵🇱

To gain control over infected device, it abused accessibility service. #ESETMalwareStats pic.twitter.com/F3wIKC6Nav — Lukas Stefanko (@LukasStefanko) February 18, 2019

#23 More Banking Malware found on Google Play

Android banking Trojan found on Google Play. #Anubis #reported



Malicious VS Official app pic.twitter.com/klymlAHAnt — Lukas Stefanko (@LukasStefanko) February 13, 2019

BONUS #1 Remotely taking control of an iPhone while charging? more coming… stay tuned!

Remotely taking control of an iPhone while charging? more coming… stay tuned! pic.twitter.com/PlBg4sicLd — LambdaConcept (@LambdaConcept) February 4, 2019

BONUS #2 Many popular iPhone apps secretly record your screen without asking

BONUS #3 Several Cryptojacking Apps Found on Microsoft Store