Security News

Android, macOS Versions of GravityRAT Spyware Spotted in Ongoing Campaign
2020-10-19 18:58

Kaspersky security researchers have identified versions of the GravityRAT spyware that are targeting Android and macOS devices. In a report published on Monday, Kaspersky reveals that the malware's authors have invested a lot into making their tool cross-platform, and that, as part of an ongoing campaign, both Android and macOS are now being targeted, in addition to Windows.

GravityRAT Comes Back to Earth with Android, macOS Spyware
2020-10-19 17:34

The criminals behind GravityRAT spyware have rolled out new macOS and Android variants for the first time. Kaspersky researchers spotted updated GravityRAT code indicating an overhaul of the the malware.

Windows GravityRAT malware now also targets Android, macOS
2020-10-19 11:48

GravityRAT, a malware strain known for checking the CPU temperature of Windows computers to detect virtual machines or sandboxes, is now multi-platform spyware as it can now also be used to infect Android and macOS devices. While the malware authors previously focused their efforts on targeting Windows machines, a sample discovered by Kaspersky researchers last year shows that they are now adding macOS and Android support.

Authentication Bug Opens Android Smart-TV Box to Data Theft
2020-10-13 16:36

The streaming box allows arbitrary code execution as root, paving the way to pilfering social-media tokens, passwords, messaging history and more. A critical bug in the Hindotech HK1 TV Box would allow root-privilege escalation thanks to improper access control.

Watch Out — Microsoft Warns Android Users About A New Ransomware
2020-10-12 00:52

Microsoft has warned about a new strain of mobile ransomware that takes advantage of incoming call notifications and Android's Home button to lock the device behind a ransom note. The findings concern a variant of a known Android ransomware family dubbed "MalLocker.B" which has now resurfaced with new techniques, including a novel means to deliver the ransom demand on infected devices as well as an obfuscation mechanism to evade security solutions.

Sophisticated Android Ransomware Executes with the Home Button
2020-10-09 17:40

A fresh variant of a sophisticated Android ransomware known as MalLocker locks up mobile devices - surfacing its ransom note when a user hits the Home button. MalLocker is different though: It uses the "Call" notification, among several categories of notifications that Android supports, which requires immediate user attention.

Microsoft Warns of Android Ransomware Abusing Notification Services
2020-10-08 18:50

Microsoft warned users on Thursday that it has spotted a sophisticated piece of Android ransomware that abuses notification services to display a ransom note. Roid ransomware typically allows cybercriminals to make a profit not by encrypting files - such as in the case of ransomware targeting desktop systems - but by displaying a full-screen ransom note that is difficult for the user to remove.

Google Rolls Out Fixes for High-Severity Android System Flaws
2020-10-07 18:44

Google has released patches addressing high-severity flaws in its System component. Two elevation of privilege issues, the most serious of the flaws, exist in the Android System component, the core of the operating system that's on Android phones.

Android's October 2020 Security Update Patches 48 Vulnerabilities
2020-10-07 11:06

The October 2020 security updates for Android patch a total of 48 vulnerabilities, including critical-severity flaws that affect Qualcomm closed-source components. Twenty of the vulnerabilities described in the latest Android Security Bulletin were patched as part of the 2020-10-01 security patch level, the most important of which is a high-risk bug in System that could allow a remote attacker to gain additional permissions.

Google Announces Android Partner Vulnerability Initiative
2020-10-05 12:30

Google on Friday announced the Android Partner Vulnerability Initiative, an effort aimed at improving patching of security issues specific to Android OEMs. Through the new initiative, the tech giant also expects to improve transparency around vulnerabilities identified by Google's own researchers, but which impact device models coming from the company's Android partners. Google already provides security researchers with various programs through which they can report security issues, such as the Android Security Rewards Program, which is for reporting vulnerabilities in Android code, and the Google Play Security Rewards Program, for reporting bugs in popular third-party Android apps.