Recent searches

No recent searches

Search options

Only available when logged in.
fosstodon.org is one of the many independent Mastodon servers you can use to participate in the fediverse.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software. If you wish to join, contact us for an invite.

Administered by:

Server stats:

8.8K
active users

fosstodon.org: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.2

#malvertising

1 post1 participant0 posts today
OTX Bot

Android Malware Posing As Indian Bank Apps

This report analyzes a sophisticated Android malware targeting Indian banking apps. The malware uses a dropper and main payload structure, leveraging permissions like SMS access and silent installation to steal credentials, intercept messages, and perform unauthorized financial activities. It employs Firebase for command and control, phishing pages to mimic banking interfaces, and techniques like call forwarding abuse. The malware's modular architecture, evasion tactics, and persistence mechanisms pose significant threats to mobile banking security. Distribution methods include smishing, fake websites, and malvertising. The report provides detailed static and dynamic analysis, highlighting the malware's capabilities in data exfiltration, debit card harvesting, and remote command execution.

Pulse ID: 68835c6fda683e2a665d5722
Pulse Link: otx.alienvault.com/pulse/68835
Pulse Author: AlienVault
Created: 2025-07-25 10:29:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

LevelBlue Open Threat ExchangeLevelBlue - Open Threat ExchangeLearn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.
#Android#Bank#CyberSecurity
Replied in thread
*
Kevin Karhan :verified:

@landley @pmevzek @jschauma @ryanc @0xabad1dea And that is espechally baffling considering that #APNIC as #RIR ran out of #IPv4|s first.

Cuz people telling me "Oh, just use HEnet's Tunnelbroker"" never experienced the shitshow that is #Geoblocking and #GDPR-#Noncompliance with #Malvertising to slap their faces!

  • Cuz believe me, I tried, but since some idiots decided to #GeoIP entire #ASN|s and not #IP - #Allocations the PoP in FRA (FFM actually) will get me mislocated to the #USA!
Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)@pmevzek@framapiaf.org @landley@mstdn.jp @jschauma@mstdn.social @ryanc@infosec.exchange @0xabad1dea@infosec.exchange no, it's just absurd to skip #64bit... I'd not be pissed if #IPv6 was widely available. - I can't even get a /64 but my ISP is happy to give me /28 subnets of IPv4...
#geoip#asn#ip
OTX Bot

Threat Actors Utilize ClickFix to Dominate Targeted Organizations

Recently, it was observed that threat actors have been utilizing sophisticated social
engineering techniques to deceive users into executing malicious commands. These
operations are primarily conducted through compromised websites, malvertising,
and YouTube tutorials. In addition, fake tech support forums that rely on
clipboard hijacking have also been observed in these malware deployment
campaigns. Clipboard hijacking, also known as pastejacking, involves injecting
harmful scripts into a victim’s clipboard, which users are then instructed to execute
via the Run dialog or Windows shortcut keys. This method has proven to be highly
effective for threat actors, as it can lead to full organizational takeovers, data
exfiltration, and ransomware deployments.

Pulse ID: 6872e095ee3ea12bb08911d5
Pulse Link: otx.alienvault.com/pulse/6872e
Pulse Author: cryptocti
Created: 2025-07-12 22:24:21

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

LevelBlue Open Threat ExchangeLevelBlue - Open Threat ExchangeLearn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.
#Clipboard#CyberSecurity#InfoSec
*
Kevin Karhan :verified:

#YouTube #ads are full of #scams and questionable financial advice by preying on #FinancialIlliterates that are #HornyForMoney.

Seriously, with all those "Matrix" refernces I wished the Wachowski Sisters or Village Roadshow Pictures or WB were to sue grifters like that.

Again: #AdBlocker are not just a necessity against #malvertising and #malware but an act of #SelfCare and #MutualDefense against #Disinformation campaigns incl. #hatespeech-based #propaganda.

#ConspiracyTheorists#ConspiracyTheory#GunnarKessler
LMG Security

Cybercriminals are using Google Ads to hijack accounts, steal data, and clone websites using AI—and it’s happening faster than you think.

Want to keep your company safe? Watch our latest video: Malvertising Attacks: How Google Ad Spoofed Account Attacks Work. You'll learn how these attacks work, why phishing is moving beyond email, and what practical steps you can take to defend your organization. youtu.be/Q_qTvyVlGwc

#Cybersecurity#Malvertising#Phishing
TrendingLive feeds
About