Month: July 2025

Android Cryptojacker Disguised as Banking App Exploits Device Lock State

by

The global craze around cryptocurrency has fueled both innovation and exploitation. While many legally chase digital gold, cybercriminals hijack devices to mine it covertly. Recently, we encountered a phishing website impersonating a well-known bank, hosting a fake Android app. While the app does not function like a real banking application, it uses the bank’s name … Read more

Android Cryptojacker Disguised as Banking App Exploits Device Lock State

by

The global craze around cryptocurrency has fueled both innovation and exploitation. While many legally chase digital gold, cybercriminals hijack devices to mine it covertly. Recently, we encountered a phishing website impersonating a well-known bank, hosting a fake Android app. While the app does not function like a real banking application, it uses the bank’s name […]

The post Android Cryptojacker Disguised as Banking App Exploits Device Lock State appeared first on Blogs on Information Technology, Network & Cybersecurity | Seqrite.

New Mobile Phone Forensics Tool

by

The Chinese have a new tool called Massistant. Massistant is the presumed successor to Chinese forensics tool, “MFSocket”, reported in 2019 and attributed to publicly traded cybersecurity company, Meiya Pico. The forensics tool works in tandem with a corresponding desktop software. Massistant gains access to device GPS location data, SMS messages, images, audio, contacts and … Read more

Google Sues 25 Chinese Entities Over BADBOX 2.0 Botnet Affecting 10M Android Devices

by
Google on Thursday revealed it’s pursuing legal action in New York federal court against 25 unnamed individuals or entities in China for allegedly operating BADBOX 2.0 botnet and residential proxy infrastructure.
“The BADBOX 2.0 botnet compromised over 10 million uncertified devices running Android’s open-source software (Android Open Source Project), which lacks Google’s security protections,”

LameHug: first AI-Powered malware linked to Russia’s APT28

by
LameHug malware uses AI to create data-theft commands on infected Windows systems. Ukraine links it to the Russia-nexus APT28 group. Ukrainian CERT-UA warns of a new malware strain dubbed LameHug that uses a large language model (LLM) to generate commands to be executed on compromised Windows systems. Ukrainian experts attribute the malware to the Russia-linked […]

5 Features Every AI-Powered SOC Platform Needs in 2025

by
A modern AI-based SOC platform must adapt in real time to handle alert overloads and fast-moving threats, surpassing traditional SIEM tools. Modern security operations centers (SOCs) are under immense pressure. Analysts are overwhelmed, alert queues are overflowing, and attackers are moving faster than ever. Where once it was enough to have good visibility and a […]

Detecting Cloud Misconfigurations

by

Signs, Impact, and Implementation Blueprint Cloud misconfigurations are one of the typical and yet often overlooked threats in cloud environments. They can result in data breaches, compliance violations, and operational disruptions. This article examines the signs of misconfigurations, including unexpected public access, unusual traffic patterns, and few cloud service-related misconfigurations. It also illustrates their potential … Read more

Are You Ready for Cyber Essentials?

by

IASME’s Cyber Essentials Readiness Tool and how it helps you prepare for certification Cyber Essentials is a UK government-backed certification scheme that helps organisations protect themselves from around 80% of common cyber threats. It’s widely recognised as a minimum standard for cyber security assurance and is often required in public-sector procurement contracts. The certification process … Read more