As per insiders, a financially driven malicious campaign known as Roaming Mantis is expanding its infection rates by targeting Android users in France and Germany for the first-time using SMS phishing techniques. In 2021, the Roaming Mantis (aka MoqHao and XLoader) campaign was distributed to users via fake shipping-related texts that contain a malicious URL, when clicked, redirects to a malicious page, and downloads a banking trojan named Wroba on users' devices, whereas iPhone users are redirected to a fake official Apple site. This campaign impacted several nations between July 2021 and January 2022, including France, Japan, India, China, Germany, and Korea. The threat actors behind the Roaming Mantis campaign are continuing to expand the attacks around the world by mining cryptocurrency from Apple devices while avoiding detection. The campaign's main purpose is to distribute Wroba malware, which functions as both spyware and banking malware and may replace legitimate apps with dangerous ones while also harvesting online bank account login details. Malware operators have also migrated from Java to Kotlin's programming language, as well as using two more backdoors to steal user information such as driver's licenses, health insurance cards or bank cards, and mobile payment services, as per researchers.
A malware campaign targeting WordPress sites has evolved its techniques, moving from client-side to server-side redirects. Initially discovered in August 2023, this campaign inject...
Japan’s CERT has issued a warning regarding multiple vulnerabilities found in the popular WordPress plugin Forminator, developed by WPMU DEV. Among these vulnerabilities is a cri...
A new malware campaign has emerged targeting individuals who actively seek out child exploitation material. The malware, named "PedoRansom" by its author, is distributed th...