Five For Friday
Five For Friday is your weekly cyber security news update on current security and cyber threats. Each week, EdgeWave will highlight five current stories on security incidents, cyber-attacks, security threats and much more. Give Us Your Feedback!
SHORT SUMMER BREAK
We’re taking a short Summer break for the remainder of July. We hope you also find time to do more then just surf the web.
Five For Friday postings will resume beginning in August.
July 12, 2019
25 MILLION ANDROID DEVICES INFECTED BY ‘AGENT SMITH’ MALWARE
Malware researchers discovered a new malicious campaign for Android devices that replaces legitimate apps with tainted copies built to push advertisements or hijack valid ad events. Around 25 million devices have already been infected with what researchers have dubbed “Agent Smith,” after users installed an app from an unofficial Android store.
RECENT WINDOWS ZERO-DAY USED BY BUHTRAP GANG FOR CYBER-ESPIONAGE
An obscure hacker group known as Buhtrap is actually behind a recent Windows OS zero-day vulnerability that was exploited in the wild. What stands out in this discovery is the name Buhtrap itself. The group isn’t your regular state-sponsored hacker outfit. The group is rarely seen and is usually involved in targeting financial institutions to steal money.
LATEST FINSPY MODULES LIFT DATA FROM SECURE MESSAGING APPS
The latest iOS and Android versions of the FinSpy espionage malware have been deployed in the wild, and are capable of collecting a raft of personal information such as contacts, SMS/MMS messages, emails, calendars, GPS location, photos, files in memory, phone call recordings and data – even from the most popular “secure” messaging platforms.
WHO’S BEHIND THE GANDCRAB RANSOMWARE?
The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims.
HACK BRIEF: A CARD-SKIMMING HACKER GROUP HIT 17K DOMAINS—AND COUNTING
You may not recognize the name Magecart, but you’ve seen its impact. A set of sophisticated hacking groups, Magecart has been behind some of the bigger hacks of the past few years, from British Airways to Ticketmaster, all with the singular goal of stealing credit card numbers.