Posts Tagged ‘malware’

New Android Trojan mimics ChatGPT, YouTube, Netflix, and other popular apps

Wednesday, May 31st, 2023

Cyber analysts from CloudSEK have reported an investigation into malicious attacks, revealing that hackers have started utilizing a Java-based Trojan called DogeRAT for Android. The creators of this malware are offering a wide array of malicious functions to clients for just $30 per month.

DogeRAT is an exceptionally effective virus that grants the operator covert control over the victim’s Android device. It stealthily steals sensitive information, including contacts, SMS messages, and online banking credentials. Moreover, the Trojan can perform unauthorized transactions, send spam messages, manipulate infected files, and even exploit the device’s camera to take photos without the user’s awareness. Within the hacking community, DogeRAT is being promoted as a service and has gained considerable popularity.

The true danger lies in the Trojan’s ability to disguise itself. It assumes the shape of both popular legitimate applications and fake ones, often impersonating gaming or banking apps. The researchers have identified approximately a thousand counterfeit applications associated with DogeRAT. Particularly notable among these disguises are replicas of well-known products such as the Opera Mini browser, a non-existent Android VulnScan OS, a clone of the ChatGPT bot, and premium versions of YouTube and Netflix.

(more…)

Demystifying the Yahoo Search redirect virus on Mac

Tuesday, December 14th, 2021

Widespread Mac malware redirects to Yahoo SearchIt has been years since Yahoo became a piece of cybercriminals’ traffic monetization puzzle, but this is still a scheme whose gist seems murky.

Mixing malware campaigns with reputable services is the norm in today’s computer threat landscape. Not only is this tactic a way to make an attack look quasi-legitimate, but it may also be interpreted as collusion all the involved parties benefit from. At this point, it isn’t entirely clear which motivation is behind the spread of the Yahoo Search redirect virus in the macOS environment. The only sure-shot takeaway from its shenanigans is that its operators’ appetite comes with eating, as the traffic-hijacking wave has grown into a serious issue.

The threat manifests itself as follows: after installing a malware-laden application, a Mac user keeps going to search.yahoo.com whenever they enter search requests in the URL area of Safari, Google Chrome, or Mozilla Firefox. On a side note, the baddie supports all these browsers to the same extent, with some infection reports relating to Opera as well. (more…)