独家
移动银行恶意软件,隐藏在微软的Word, Adobe flash应用程序可能会影响Android智能手机
已经观察到一个新的Android手机恶意软件命名EventBot正在蔓延。
-
BSNL名字六个官员被迫退休
强制退休的军官派是印度电信服务(其)干部分批从1988年到1992年。
-
-
-
新德里:一个移动银行恶意软件被称为“EventBot”,窃取个人金融信息,可能会影响Android手机用户在印度,联邦网络安全机构称最新的咨询。
、已发出警告,称木马病毒可能“伪装成合法的应用等微软文字处理软件,Adobe flash和其他人使用第三方应用程序下载网站渗透到受害者装置”。
病毒或木马恶意软件欺骗受害者暗地里攻击它的电脑或手机操作系统。
“它已经观察到一个新的Android手机恶意软件命名EventBot正在蔓延。
“这是一个小山特洛伊和info-stealer滥用Android的内置可访问特性从金融窃取用户数据应用程序,阅读用户短信和拦截短信,让恶意软件绕过双重认证,”、顾问说。
印度的计算机紧急响应小组(、)是国家技术部门应对网络攻击和保卫印度的网络空间。
病毒主要金融应用程序像Paypal业务目标,Revolut,巴克莱(Barclays)、意大利联合信贷银行,CapitalOne英国汇丰银行英国TransferWise, Coinbase, paysafecard等等。
“EventBot”,它说,目标200多不同的金融应用程序,包括银行应用程序,转账服务和cryptocurrency钱包,或金融应用程序位于美国和欧洲地区,但是他们的一些服务可能影响印度用户。
病毒”主要目标金融应用程序像Paypal业务,Revolut英国,意大利联合信贷银行巴克莱CapitalOne汇丰英国TransferWise, Coinbase paysafecard等等,“、说。
该机构表示,尽管“EventBot”没有被“看见”谷歌Playstore直到现在,它可以“伪装”成一个真正的手机应用程序。
“一旦安装在受害者的Android设备,如控制系统警报,它要求权限阅读外部存储内容,安装额外的包,访问互联网,白名单忽略电池优化,防止处理器睡觉或调暗屏幕,auto-initiate重启后,接收和阅读短信,继续在后台运行和访问数据,”咨询解释道。
病毒进一步提示用户给他们的设备可访问性服务的访问。
”也可以检索通知其他已安装的应用程序和阅读内容的其他应用程序。
、已发出警告,称木马病毒可能“伪装成合法的应用等微软文字处理软件,Adobe flash和其他人使用第三方应用程序下载网站渗透到受害者装置”。
病毒或木马恶意软件欺骗受害者暗地里攻击它的电脑或手机操作系统。
“这是一个小山特洛伊和info-stealer滥用Android的内置可访问特性从金融窃取用户数据应用程序,阅读用户短信和拦截短信,让恶意软件绕过双重认证,”、顾问说。
印度的计算机紧急响应小组(、)是国家技术部门应对网络攻击和保卫印度的网络空间。
“EventBot”,它说,目标200多不同的金融应用程序,包括银行应用程序,转账服务和cryptocurrency钱包,或金融应用程序位于美国和欧洲地区,但是他们的一些服务可能影响印度用户。
病毒”主要目标金融应用程序像Paypal业务,Revolut英国,意大利联合信贷银行巴克莱CapitalOne汇丰英国TransferWise, Coinbase paysafecard等等,“、说。
该机构表示,尽管“EventBot”没有被“看见”谷歌Playstore直到现在,它可以“伪装”成一个真正的手机应用程序。
病毒进一步提示用户给他们的设备可访问性服务的访问。
”也可以检索通知其他已安装的应用程序和阅读内容的其他应用程序。
NEW DELHI: A mobile banking malware<\/a> called \"EventBot<\/a>\", which steals personal financial information, may affect Android phone users in India, the federal cyber-security agency has said in a latest advisory.
The CERT-In has issued a caution, saying the Trojan<\/a> virus may \"masquerade as a legitimate application such as Microsoft Word<\/a>, Adobe flash and others using third-party application downloading sites to infiltrate into victim device\".
A Trojan is a virus or malware<\/a> that cheats a victim to stealthily attack its computer or phone-operating system.
The CERT-In has issued a caution, saying the Trojan<\/a> virus may \"masquerade as a legitimate application such as Microsoft Word<\/a>, Adobe flash and others using third-party application downloading sites to infiltrate into victim device\".
A Trojan is a virus or malware<\/a> that cheats a victim to stealthily attack its computer or phone-operating system.
<\/div><\/div>\"It has been observed that a new Android mobile malware named EventBot is spreading.
\"It is a mobile-banking Trojan and info-stealer that abuses Android's in-built accessibility features to steal user data from financial applications<\/a>, read user SMS messages and intercept SMS messages, allowing malware to bypass two-factor authentication,\" the CERT-In advisory said.
The Computer Emergency Response Team of India (CERT-In) is the national technology arm to combat cyber attacks and guard the Indian cyber space.
![\"](\"https:\/\/st.etb2bimg.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
The virus largely targets financial applications like Paypal Business, Revolut, Barclays, UniCredit, CapitalOne UK, HSBC UK, TransferWise, Coinbase, paysafecard etc.<\/span><\/figcaption><\/figure>
\"EventBot\", it said, targets over 200 different financial applications, including banking applications, money-transfer services and cryptocurrency wallets, or financial applications based in the US and Europe region at the moment but some of their services may affect Indian users as well.
The virus \"largely targets financial applications like Paypal Business, Revolut<\/a>, Barclays, UniCredit, CapitalOne UK, HSBC UK, TransferWise, Coinbase, paysafecard etc.,\" the CERT-In said.
The agency said while \"EventBot\" has not been \"seen\" on Google<\/a> Playstore till now, it can \"masquerade\" as a genuine mobile phone application.
\"It is a mobile-banking Trojan and info-stealer that abuses Android's in-built accessibility features to steal user data from financial applications<\/a>, read user SMS messages and intercept SMS messages, allowing malware to bypass two-factor authentication,\" the CERT-In advisory said.
The Computer Emergency Response Team of India (CERT-In) is the national technology arm to combat cyber attacks and guard the Indian cyber space.
\"EventBot\", it said, targets over 200 different financial applications, including banking applications, money-transfer services and cryptocurrency wallets, or financial applications based in the US and Europe region at the moment but some of their services may affect Indian users as well.
The virus \"largely targets financial applications like Paypal Business, Revolut<\/a>, Barclays, UniCredit, CapitalOne UK, HSBC UK, TransferWise, Coinbase, paysafecard etc.,\" the CERT-In said.
The agency said while \"EventBot\" has not been \"seen\" on Google<\/a> Playstore till now, it can \"masquerade\" as a genuine mobile phone application.
<\/div><\/div>\"Once installed on victim's Android device, it asks permissions such as controlling system alerts, reading external storage content, installing additional packages, accessing internet, whitelisting it to ignore battery optimisation, prevent processor from sleeping or dimming the screen, auto-initiate upon reboot, receive and read SMS messages and continue running and accessing data in the background,\" the advisory explained.
The virus further prompts the users to give access to their device accessibility services.
\"Also, it can retrieve notifications about other installed applications and read contents of other applications.
<\/div><\/div>
The virus further prompts the users to give access to their device accessibility services.
\"Also, it can retrieve notifications about other installed applications and read contents of other applications.
<\/div><\/div>
Follow and connect with us on Twitter<\/a>, Facebook<\/a>, Linkedin<\/a>, Youtube<\/a><\/div>","NumberOfSentences":{"minfo":"13.0","minfoseo":"13-0"},"AMPStory":{"minfo":"0","minfoseo":"0"},"AutomatedReadabilityIndex":{"minfo":"14.0","minfoseo":"14-0"},"LastPublishMilliTime":{"minfo":"1589512262620","minfoseo":"1589512262620"},"ReadabilityGradeLevel":{"minfo":"College","minfoseo":"college"},"GadgetsMarkedReviewed":{"minfo":"0","minfoseo":"0"},"HashCode":{"minfo":"204995988","minfoseo":"204995988"},"latestnewsflag":{"minfo":"1.0","minfoseo":"1-0"},"OriginalImageHeightPx":{"minfo":"480.0","minfoseo":"480-0"},"OriginalImageWidthPx":{"minfo":"640.0","minfoseo":"640-0"},"NumberOfCharacters":{"minfo":"2332.0","minfoseo":"2332-0"},"NumberOfWords":{"minfo":"331.0","minfoseo":"331-0"},"key":[{"keyid":"54201","value":"Malware","smid":"0","keynameseo":"Malware","keytype":"","keycount":"totalcount","weightage":"100"},{"keyid":"284120","value":"Trojan","smid":"0","keynameseo":"Trojan","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"6659127","value":"Multi-factor authentication","smid":"0","keynameseo":"Multi-factor-authentication","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"3959843","value":"mobile banking malware","smid":"0","keynameseo":"mobile-banking-malware","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"174648","value":"Microsoft Word","smid":"0","keynameseo":"Microsoft-Word","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"9153626","value":"eventbot","smid":"0","keynameseo":"eventbot","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"6371395","value":"applications","smid":"0","keynameseo":"applications","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"4753947","value":"revolut","smid":"0","keynameseo":"revolut","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6355629","value":"google","smid":"0","keynameseo":"google","keytype":"","keycount":"totalcount","weightage":"20"}],"authorsplit":[],"similarlytagged":[{"msid":"95752330","stname":"Fake Reliance Jio Tower malicious app capable of stealing financial data, PII","artsyn":"The banking Trojan, JioTower.apk, allows unrestricted access to sensitive data on a user\u2019s device.","seolocation":"telecomnews\/fake-reliance-jio-tower-malicious-app-capable-of-stealing-financial-data-pii","seolocationalt":"Fake Reliance Jio Tower malicious app capable of stealing financial data, PII","url_seo":"fake-reliance-jio-tower-malicious-app-capable-of-stealing-financial-data-pii"},{"msid":"94227360","stname":"Malware in 28 games like Roblox, Minecraft exploit several players' financial data","artsyn":"Cybercriminals are creating more and more new schemes and tools to attack players and steal their credit card data and even game accounts, which can contain expensive skins that can later be sold.","seolocation":"telecomnews\/malware-in-28-games-like-roblox-minecraft-exploit-several-players-financial-data","seolocationalt":"Malware in 28 games like Roblox, Minecraft exploit several players' financial data","url_seo":"malware-in-28-games-like-roblox-minecraft-exploit-several-players-financial-data"},{"msid":"93447123","stname":"Chinese hackers attack govt ministries, military plants globally","artsyn":"Researchers at cyber-security firm Kaspersky detected a wave of targeted attacks on military industrial complex enterprises and public institutions in several Eastern European countries and Afghanistan.","seolocation":"telecomnews\/chinese-hackers-attack-govt-ministries-military-plants-globally","seolocationalt":"Chinese hackers attack govt ministries, military plants globally","url_seo":"chinese-hackers-attack-govt-ministries-military-plants-globally"},{"msid":"93065130","stname":"WhatsApp is working on these new features","artsyn":"According to WABetaInfo, the users will see a new section with a header image at the top.","seolocation":"telecomnews\/whatsapp-is-working-on-these-new-features","seolocationalt":"WhatsApp is working on these new features","url_seo":"whatsapp-is-working-on-these-new-features"},{"msid":"92890337","stname":"WhatsApp CEO has a 'warning reminder' for Android smartphone users","artsyn":"\"These apps promised new features but were just a scam to steal personal information stored on people\u2019s phones. We\u2019ve shared what we found with Google and worked with them to combat the malicious apps.\"","seolocation":"telecomnews\/whatsapp-ceo-has-a-warning-reminder-for-android-smartphone-users","seolocationalt":"WhatsApp CEO has a 'warning reminder' for Android smartphone users","url_seo":"whatsapp-ceo-has-a-warning-reminder-for-android-smartphone-users"},{"msid":"92105621","stname":"Multi-step authentication can ward off cyber scammers: Cops","artsyn":"Talking to TOI, DCP (South) Mridul Kacahwa said many people have been relying on basic passwords to protect their different online accounts like internet banking, e-wallets, emails etc. He urged people to use two-factor authentication, also known as 2FA. \u201cIt is a security function under which users provide two different authentication elements to verify access to multiple devices and online accounts,\u201d he said, adding that it offers an extra security lawyer which makes the scammers\u2019 task challenging.","seolocation":"telecomnews\/multi-step-authentication-can-ward-off-cyber-scammers-cops","seolocationalt":"Multi-step authentication can ward off cyber scammers: Cops","url_seo":"multi-step-authentication-can-ward-off-cyber-scammers-cops"},{"msid":"91952116","stname":"International police bust 'FluBot' phone scam","artsyn":"Dutch cybercops led an operation in May targeting the malware, which infects Android phones using texts which pretend to be from a parcel firm or which say a person has a voicemail waiting.","seolocation":"telecomnews\/international-police-bust-flubot-phone-scam","seolocationalt":"International police bust 'FluBot' phone scam","url_seo":"international-police-bust-flubot-phone-scam"},{"msid":"91896989","stname":"Cert-In issues warning on mobile based malware","artsyn":"Malware such as Adware, cryptocurrency mining malware, remote access tools, mobile banking and short messaging service trojans, mobile spyware and ransomware were active and users must ensure they are safe from them, it said.","seolocation":"telecomnews\/cert-in-issues-warning-on-mobile-based-malware","seolocationalt":"Cert-In issues warning on mobile based malware","url_seo":"cert-in-issues-warning-on-mobile-based-malware"},{"msid":"91654711","stname":"Researchers find way to hit iPhones with malware even when switched off","artsyn":"They found that iPhone\u2019s Bluetooth chip lacks any mechanism for digital signatures or to encrypt the firmware it runs. By exploiting this, the researchers were able to run a malicious firmware that allows any hacker to track an iPhone\u2019s location or to run new features even when the device is turned off.","seolocation":"telecomnews\/researchers-find-way-to-hit-iphones-with-malware-even-when-switched-off","seolocationalt":"Researchers find way to hit iPhones with malware even when switched off","url_seo":"researchers-find-way-to-hit-iphones-with-malware-even-when-switched-off"},{"msid":"91610353","stname":"Explainer: What is keylogger malware and how to stay safe from it","artsyn":"A keylogger malware can arrive and implant itself into your system in various ways like phishing emails, Trojans, fake websites, zero day exploits etc. If we talk about hardware-based keyloggers, one example can be the keyboard overlay on an ATM. Usually, software-based keylogger attacks are more common.","seolocation":"telecomnews\/explainer-what-is-keylogger-malware-and-how-to-stay-safe-from-it","seolocationalt":"Explainer: What is keylogger malware and how to stay safe from it","url_seo":"explainer-what-is-keylogger-malware-and-how-to-stay-safe-from-it"},{"msid":"90308001","stname":"How this software is being used to target Apple users with malware","artsyn":"Since the beta apps for testing purposes are under no strict surveillance \u2014 they are not being screened for the App Store \u2014 this gives fraudsters a chance to send malware directly to the victim\u2019s device","seolocation":"telecomnews\/how-this-software-is-being-used-to-target-apple-users-with-malware","seolocationalt":"How this software is being used to target Apple users with malware","url_seo":"how-this-software-is-being-used-to-target-apple-users-with-malware"},{"msid":"90247862","stname":"Researchers discover new destructive wiper malware in Ukraine","artsyn":"Cyber-security researchers have discovered a new destructive wiper malware that is affecting computer systems in Ukraine, and erases user data and partition information from any drives attached to a compromised machine.","seolocation":"telecomnews\/researchers-discover-new-destructive-wiper-malware-in-ukraine","seolocationalt":"Researchers discover new destructive wiper malware in Ukraine","url_seo":"researchers-discover-new-destructive-wiper-malware-in-ukraine"},{"msid":"89169484","stname":"This smartphone malware can steal your banking details and delete all your data","artsyn":"BRATA is a remote access trojan that can steal your credentials. Now as per the latest report by Cleafy, the malware has been updated with new features such as GPS tracking and ability to perform factory reset. This means that BRATA can now steal all your details and wipe all the data stored in your smartphone.","seolocation":"telecomnews\/this-smartphone-malware-can-steal-your-banking-details-and-delete-all-your-data","seolocationalt":"This smartphone malware can steal your banking details and delete all your data","url_seo":"this-smartphone-malware-can-steal-your-banking-details-and-delete-all-your-data"},{"msid":"88931482","stname":"Microsoft warns of destructive malware in computer systems of Ukrainian state institutions","artsyn":"The malware has impacted \"multiple government, non-profit, and information technology organizations, all based in Ukraine,\" according to the IT company.","seolocation":"telecomnews\/microsoft-warns-of-destructive-malware-in-computer-systems-of-ukrainian-state-institutions","seolocationalt":"Microsoft warns of destructive malware in computer systems of Ukrainian state institutions","url_seo":"microsoft-warns-of-destructive-malware-in-computer-systems-of-ukrainian-state-institutions"},{"msid":"88874251","stname":"Hackers spreading powerful malware via Omicron news emails","artsyn":"Cyber-security researchers have unearthed that hackers are spreading a powerful malware via news around the new Omicron strain, stealing information and credentials from Windows users in at least 12 countries.","seolocation":"telecomnews\/hackers-spreading-powerful-malware-via-omicron-news-emails","seolocationalt":"Hackers spreading powerful malware via Omicron news emails","url_seo":"hackers-spreading-powerful-malware-via-omicron-news-emails"},{"msid":"86747669","stname":"Cloud hacking: India now 2nd most targeted nation after US","artsyn":"The government was the most targeted sector in Q2 of 2021 with a 64 per cent increase in publicly reported cyber incidents, according to the 'Advanced Threat Research Report: October 2021' by McAfee Enterprise.","seolocation":"telecomnews\/cloud-hacking-india-now-2nd-most-targeted-nation-after-us","seolocationalt":"Cloud hacking: India now 2nd most targeted nation after US","url_seo":"cloud-hacking-india-now-2nd-most-targeted-nation-after-us"},{"msid":"84969526","stname":"'1 in 3 Indian PC home users at high risk of cyber attack risk'","artsyn":"Nearly one third (28.22 per cent) of PC home users in India are at high risk of cyber attacks, according to a report by digital security and privacy provider Avast.","seolocation":"telecomnews\/1-in-3-indian-pc-home-users-at-high-risk-of-cyber-attack-risk","seolocationalt":"'1 in 3 Indian PC home users at high risk of cyber attack risk'","url_seo":"1-in-3-indian-pc-home-users-at-high-risk-of-cyber-attack-risk"},{"msid":"84787743","stname":"Hackers spreading malware through Discord: Report","artsyn":"Leading cybersecurity firm Sophos on Monday warned users that popular chat platform Discord is being used by hackers for spreading malware.","seolocation":"telecomnews\/hackers-spreading-malware-through-discord-report","seolocationalt":"Hackers spreading malware through Discord: Report","url_seo":"hackers-spreading-malware-through-discord-report"},{"msid":"84666186","stname":"This Rs 3,600 malware stealing information of Mac, Windows users","artsyn":"A malware, available for just a little over Rs 3,600 ($49) on the Dark Web, is helping hackers steal the information of Mac and Windows users, cyber researchers warned on Thursday.","seolocation":"telecomnews\/this-rs-3600-malware-stealing-information-of-mac-windows-users","seolocationalt":"This Rs 3,600 malware stealing information of Mac, Windows users","url_seo":"this-rs-3600-malware-stealing-information-of-mac-windows-users"},{"msid":"83942012","stname":"Microsoft admits to signing rootkit malware in supply-chain fiasco","artsyn":"Tech giant Microsoft has now confirmed signing a malicious driver being distributed within gaming environments.","seolocation":"telecomnews\/microsoft-admits-to-signing-rootkit-malware-in-supply-chain-fiasco","seolocationalt":"Microsoft admits to signing rootkit malware in supply-chain fiasco","url_seo":"microsoft-admits-to-signing-rootkit-malware-in-supply-chain-fiasco"}],"primeid":0,"storytags":{"categoryTag":{"sectionid":"49830939","sectionname":"TelecomNews","seolocation":"telecomnews","seolocationalt":"telecomnews"},"otherTags":[{"keyid":"54201","value":"Malware","smid":"0","keynameseo":"Malware","keytype":"","keycount":"totalcount","weightage":"100"},{"keyid":"284120","value":"Trojan","smid":"0","keynameseo":"Trojan","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"6659127","value":"Multi-factor authentication","smid":"0","keynameseo":"Multi-factor-authentication","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"3959843","value":"mobile banking malware","smid":"0","keynameseo":"mobile-banking-malware","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"174648","value":"Microsoft Word","smid":"0","keynameseo":"Microsoft-Word","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"9153626","value":"eventbot","smid":"0","keynameseo":"eventbot","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"6371395","value":"applications","smid":"0","keynameseo":"applications","keytype":"","keycount":"totalcount","weightage":"80"},{"keyid":"4753947","value":"revolut","smid":"0","keynameseo":"revolut","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6355629","value":"google","smid":"0","keynameseo":"google","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6355190","value":"Devices","smid":"0","keynameseo":"Devices","keytype":"","keycount":"totalcount","weightage":"20"}],"filterTags":[{"title":"Tech and Gadgets","id":"4003006","url":"topic\/4003006\/tech-and-gadgets"}]},"formattedTags":{"companyTags":[],"otherTags":[{"name":"Multi-factor authentication"},{"name":"mobile banking malware"},{"name":"Microsoft Word"},{"name":"applications"},{"name":"eventbot"},{"name":"Malware"},{"name":"revolut"},{"name":"Devices"},{"name":"Trojan"},{"name":"google"}],"newsCategoryTags":[{"name":"TelecomNews","seolocation":"telecomnews"}],"breadcrumbTags":["Malware","Trojan","Multi-factor authentication","mobile banking malware","Microsoft Word","eventbot","applications","revolut","google","Devices"],"filterTags":[{"title":"Tech and Gadgets","id":"4003006","url":"topic\/4003006\/tech-and-gadgets"}]},"breadcrumbTags":["Malware","Trojan","Multi-factor authentication","mobile banking malware","Microsoft Word","eventbot","applications","revolut","google","Devices"],"Alttitle":{"minfo":""},"Altdescription":{"minfo":""},"amp_url":"\/\/www.iser-br.com\/amp\/news\/mobile-banking-malware-that-hides-in-ms-word-adobe-flash-apps-may-affect-android-smartphones\/75749878"}" data-news-images="[{"msid":"75749799","msname":"","msnameseo":"smartphone-alerts_gettyimages","mediatype":"1","artdate":"2020-05-15 08:32:33.0","caption":" The virus largely targets financial applications like Paypal Business, Revolut, Barclays, UniCredit, CapitalOne UK, HSBC UK, TransferWise, Coinbase, paysafecard etc."}]" data-newsletter-by="0" data-newsletter-date="a" data-hasbottomcarousel="" data-alldetailsopen="0" data-multipleanalyticshit="" data-deeplink="https://ettelecom.app.link?$deeplink_path=" data-socialshareformat="default">
