Popular on eTradeWire
- The On It Foundation Helps Professional Athletes and Celebrities Give Back through Fiscal Sponsorship 224
- Onlive Server Announced Indian Cloud VPS Hosting in India with SSD Storage and Unlimited Bandwidth 216
- TVS Quiz Show Network To Produce More than 500 Episodes of New TVS Quiz Show Episodes 180
- Heated Armor Lands First Major Deal!!! 159
- Wormhole Labs Partners With MagicLinks to provide safe and social shopping during COVID19 Pandemic 145
- Consortiums fulfill requirement for random drug testing programs 143
- Drive-thru art experience provides excitement during pandemic 127
- Reader Views Literary Awards Announces Addition Of Two Cash Awards For Grand Prize Winners In Fiction And Non-fiction 123
- Escape the Room Locations Reopen Nationwide For a Safe And Exciting Night Out 119
- 5 Steps To Turn Your Ideas Into Actions from Your Marketing Superheroes 111
Similar on eTradeWire
- New Lingoport Suite Release: Machine Translation, Contextual QA & more
- Black Woman-Owned Business Successfully Creates a New Blueprint and Pivots During the Pandemic while Assembling a Powerhouse Team
- Tom Urquhart, Ph.D., joins IOTech Systems as SVP of Professional Services
- CEO Coaching International Client, StoneAge Inc., Acquires Breadware, A Leader in Industrial IOT Product Development
- Alertus Releases New Chrome Extension for Desktop Alerting
- Earn Extra Cabbage, Trade Recycled Mobile Phones on HaggleUp
- Cozaint Corp Launches Industry's First VMS Platform With Long-Term Video Retention
- Evolve IP Delivers World's Only Omnichannel Contact Center Integrated with Microsoft Teams and Virtual Workspaces
- The Many Components of Surround Sound Systems
- Digital Defense Announces New Partner Program for Managed Service Providers
EclecticIQ and ThreatFabric investigation reveals evidence of malicious Android packages posing as legitimate Covid-19 contact tracing apps
eTradeWire News/10576940
Threat actors exploit consumer trust in legitimate government apps to plant malicious packages
AMSTERDAM - eTradeWire -- EclecticIQ, the global provider of cyber threat intelligence (CTI) technology solutions, has teamed up with fraud and cybercrime prevention experts at ThreatFabric to publish the findings of an investigation into instances of threat actors actively pushing malicious Android packages disguised as legitimate contact tracing applications.
Key analysis points by ThreatFabric and EclecticIQ reveal that:
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on eTradeWire News
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on eTradeWire News
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Key analysis points by ThreatFabric and EclecticIQ reveal that:
- Threat actors have been disguising Android packages as legitimate government-backed contact tracing applications for financial gain.
- There is evidence to suggest that actors have used repackaged commodity and open-source malware to lower the investment required in the observed campaigns.
- Third-party port forwarding, and secure tunneling services have probably been used to provide anonymization to command and control (C2) infrastructure.
- The Android packages were probably delivered through links pointing to phishing pages.
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on eTradeWire News
- The Mystery Of Covid-19, Book 13 of the Jan and Jenny Mystery Book Series Released!
- Commemorating Hiroshima And Nagasaki: Preventing The Nuclear Holocaust
- Grandma's Favorite Recipes -- A Cookbook by Sarah Rodefeld! Published by Bellissima Publishing, L
- Bow Tie Brand Releases 3 New Items Dedicated To Frontline Workers
- Unicorn Children's Foundation 7 Day Heads or Tails Challenge raises funds for virtual programs
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
- Read full report here
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on eTradeWire News
- Red Hook Terminals to Deploy Largest Electric Truck Fleet on US East Coast
- Hospitality Industry Veteran Kasia Mays Joins CGI Real Estate Investment Strategies as COO
- AmPac Receives $500,000 to Provide Capital to Inland Empire Small Businesses
- Avoiding the 17a-4 Quagmire - AdvisorVault's Guide for Small FINRA Firms
- Tax Deed Investing Workshop on August 16, 2020
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Source: EclecticIQ
0 Comments
Latest on eTradeWire News
- Stillness: Whispers From Nature — A New Book Launch
- Community health nonprofit announces new director of Access Kershaw
- Industry Veteran Owned Non Profit Offers New Roadmap For Black Owned Businesss
- Medicare 5 Star Rating Information – Cary Nagdeman Educator
- Harrisburg Orthodontist Straightening Smiles with Affordable Braces
- Eric Bopp Announces He's Running for Judge
- Dan and Tina Coughlin Expand Home Helpers Comprehensive Care Program to the Crystal Coast
- Sheila is ready to fight for you!
- ALGO Online Retail Hosts Virtual Summit for Third-Party Amazon FBA Sellers
- Creighton Construction & Development relocates with office in Fort Myers
- Book Your Appointment for Osteopathy Today
- Benefits of Getting New Employee Badges Made Quick During COVID-19
- Factors for Choosing the Right Online Name Badge Maker for All Your Needs
- Undrafted Free Agent LaShaun Sanders is Navigating this Covid Era with Positivity
- Green Stream Holdings, Inc. Profiles CEO Madeline Cammarata: Evolving Solar from Function to Fashion
- New Lingoport Suite Release: Machine Translation, Contextual QA & more
- AdvisorSmith Finds the Most Affordable Metro Areas in the West
- CDI Global Welcomes RVCO Consultants as its New Member Firm in India
- Black Woman-Owned Business Successfully Creates a New Blueprint and Pivots During the Pandemic while Assembling a Powerhouse Team
- Careington CIO Rashmi Jain to Speak at CXO Spotlight Event