Custom Search

Trojan:Android/Pincer.A

Protip: don’t install an Android application package file if it’s named “Certificate.apk”.It’s not legit (obviously).Trojan:Android/Pincer.A is able to forward SMS messages and perform other actions based on commands it receives from its C&C. When installed, it will appear in the application menu as “Certificate” and will display related bogus messages when run. Previous malicious mobile …

AVG CodeWord: Update – Apple Mac OS X

Apple provides users of its OS X operating system with a Software Update feature which is run at defined intervals, but which may be accessed manually at any time by visiting the (?) menu and selecting Software Update.

If you have set your Software Update preferences to run weekly then you see a list of …

Android Permissions: For Apps or Ads?

An Android application package (APK) can include multiple modules; one or more of these modules may be an advertisement SDK. That’s pretty normal nowadays, as many Android developers currently use such modules to compensate for providing their products to users for free. So what happens if the app is clean, but the ad module is …

SpyEye targeting Android users – just a copy of Zeus’s strategy?

In the world of Windows malware, SpyEye is a widely spread malicious toolkit for creating and managing botnets designed primarily for stealing banking credentials and other confidential information from infected systems.

SpyEye is a major competitor of infamous Zeus toolkit. Zeus (also known as ZBot) generated a lot of interest in the mobile security …

Rooting Exploit for Android Works Silently

In our last blog about Android malware, we discussed the expanding threat landscape for Android malware. Recently, we received an Android package in our collection and observed that this malicious application uses a rooting exploit that targets Android devices running OS Versions 2.3 or earlier to gain root privileges on the compromised device.

The malware …

Zeus for Android and fake Kaspersky Antivirus 2011

Over the weekend I have written about the discovery of the potential Android component of the Zeus information stealing toolkit (also known as Zitmo). I wanted to share an update as there are further developments in the discovery of the relationship between Zeus toolkit and Andr/SMSRep-B.

Thanks to Denis from Kaspersky Labs we can now …