- Dangerous Mobile Banking Trojan Gets ‘Keylogger’ to Steal Everything
Cyber criminals are targeting users through a different technique. According to the Security, researchers have discovered that one of the most dangerous Android banking Trojan families has now been modified to add a keylogger to its recent strain, giving attackers yet another way to steal victim’s sensitive data. Kaspersky Lab’s Senior malware analyst Roman Unuchek spotted a new variant of the well-known Android banking Trojan, dubbed Svpeng, in the mid of last month with a new keylogger feature, which takes advantage of Android’s Accessibility Services. Android feature that provides users alternative ways to interact with their smartphone devices. The Svpeng Trojan able not only to steal entered text from other apps installed on the device and log all keystrokes but also to grant itself more permissions and rights to prevent victims from uninstalling the Trojan, the researcher said. Once the Trojan installed in the system it checks for language, and, if the language is not Russian, asks the device to use Accessibility Services, which opens the infected device to a number of dangerous attacks.
Cyber Security Tips: To prevent from this Trojan users are strongly recommended that, always download the apps from trusted sources only, verify app permissions before installing apps, Never click on links provided in an SMS, MMS or email, keep Installing a good antivirus app that can detect and block such malware before it can infect your device, and always keep the app up-to-date.
- FireEye researcher hacked
Cyber security firm FireEye said on Monday one of its researchers based in Israel had several of his online accounts hacked by unknown attackers, but added the breach did not appear to involve any company systems. A FireEye spokesman confirmed data had been stolen from one its employees but said there was so far no evidence that the companies’ systems were affected. The hackers also appeared to have gained access to his LinkedIn account and defaced the profile page with various juvenile profanities, according to a screenshot republished on twitter. The profile is currently “not available” on LinkedIn.
Cyber Security Tips: To prevent from such cyber-attacks keep yourself protected while online, beware of a phishing attack, avoid clicking on any link, ads while online, never use the same password for different accounts, always keep changing your password and use good antivirus.