Popular on EntSun
- Singer/Songwriter John Schayer Debuts New Remix 'Tears Me Apart' Featuring Alicia Perrone - 163
- What are the Moving tips for Relocation from Greater Noida to Pune? - 159
- The Sawyer Massacre Launches August 29th - 101
- Save Up To 40% Off And Extra Discount By Julia Hair Coupon
- 3rd Annual Atlanta Fashion & Polo Classic takes place at Atlanta Polo Club
- Sidow Sobrino releases a new single "Our Love," featuring his husband Richard
- L2 Aviation adds Global Remote Avionics Capabilities for Business Aircraft
- TriCoast Worldwide Acquires 'Sweet Taste of Souls'
- TYRONE PROCTOR Honoring Legendary Soul Train Dancer with Princess Lockerooo on GingerNewYork TV Show
- Englewood Cliffs Democratic Councilperson Deborah Tsabari Plead Guilty To A Felony
Similar on EntSun
- New live video network for students enhances college social life and campus entertainment
- Mom-Oriented UX Design Coaching Program Offers Newest Opportunity for Success from You Are TechY
- Brookside Equity Partners Makes Minority Investment in Advanced Solutions International (ASI)
- OncoBeta GmbH and Australian Nuclear Science and Technology Organisation sign Letter of Intent to establish manufacturing site in Australia
- Patton Announces the World's Smallest, Lowest-Cost eSBC for SoHo and SME
- Canada's CHEK TV upgrades with the new Wohler iVAM1-1
- Ideanomics Hires Dr. Liqing Hu a Fuel Cell Expert For Its EV Truck Division
- AutoQuotes Announces Partnership with Energy Solutions
- Nous Imaging Receives 510(k) Clearance from FDA for FIRMM Software
- Evolve IP Enhances Its Microsoft Teams and Cisco Voice Direct Routing Platform
EclecticIQ and ThreatFabric investigation reveals evidence of malicious Android packages posing as legitimate Covid-19 contact tracing apps
EntSun News/10832067
Threat actors exploit consumer trust in legitimate government apps to plant malicious packages
AMSTERDAM - EntSun -- EclecticIQ, the global provider of cyber threat intelligence (CTI) technology solutions, has teamed up with fraud and cybercrime prevention experts at ThreatFabric to publish the findings of an investigation into instances of threat actors actively pushing malicious Android packages disguised as legitimate contact tracing applications.
Key analysis points by ThreatFabric and EclecticIQ reveal that:
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on EntSun News
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on EntSun News
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Key analysis points by ThreatFabric and EclecticIQ reveal that:
- Threat actors have been disguising Android packages as legitimate government-backed contact tracing applications for financial gain.
- There is evidence to suggest that actors have used repackaged commodity and open-source malware to lower the investment required in the observed campaigns.
- Third-party port forwarding, and secure tunneling services have probably been used to provide anonymization to command and control (C2) infrastructure.
- The Android packages were probably delivered through links pointing to phishing pages.
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on EntSun News
- Study shows the state of hotel cleanliness in Europe. Which countries are best for booking hotels that are clean?
- Texas hip hop artist sends shout out to friends in 'Darcwav' music collective in new single
- Kupper Mounts Vacuum-Powered, Suction Cup Bike Racks Now for Sale Now through Shopify & KupperMounts.com for Customers Living in the United States
- The Known World needs a fix or things could get very ugly
- Save Up To 35% Off And Extra Discount By Beautyforever Hair Coupon
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
- Read full report here
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on EntSun News
- LMG Introduce YALE x PEACEBIRD MEN Collaboration
- Clothes Rental App Changes The Way You Dress
- Special Collaboration ShopLocalDesigners.com is Online
- New live video network for students enhances college social life and campus entertainment
- Mom-Oriented UX Design Coaching Program Offers Newest Opportunity for Success from You Are TechY
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Source: EclecticIQ
Filed Under: Technology, COVID-19
0 Comments
Latest on EntSun News
- Celebrate 30 Years Of Beverly Hills 90210 With The Beverly Hills 90210 Podcast Super Show
- D & G Collins Enterprises, Inc awarded a GSA Multiple Award Schedule Contract assisted by Mr. Brian Peterson and Government Marketplace LLC
- World Theatrical Premiere Of The Documentary "Me The People" Official Selection At Boston Film Festival 2020
- Canada's CHEK TV upgrades with the new Wohler iVAM1-1
- Museum of Graffiti Launches Exclusive OSGEMEOS Capsule Collection
- Autism Memoir Launches During Canadian Autism Awareness Month
- All I Ever Wanted Tops Indie Charts!
- Ideanomics Hires Dr. Liqing Hu a Fuel Cell Expert For Its EV Truck Division
- Live Good Inc. Be The Generation with Representation Product Line
- NATP announces Virtual Tax Season Update
- AutoQuotes Announces Partnership with Energy Solutions
- NCBW METRO New York Hosting Virtual Charter Ceremony
- Vision Centre-Ville et ID Gatineau s'associent à Macadamian afin d'offrir une application mobile aux tenanciers de bars et restaurants de Gatineau
- Be The Generation with Representation
- Young Jefferson County Artist, Aliana Wins 2020 Outstanding Newcomer of the Year
- Same Time, Next Year at North Coast Repertory Theatre
- Soft As A Grape Adds Holiday Style And Comfort To Masks With New Threadless Sequin Designs
- Hip Hop Artist C.Y.B. is Slated to Release His New Album Called, "Today We Ready."
- 227's™ YouTube Chili' ENSLAVED | Samuel L. Chili' Jackson, AFRICA's Benga Tribe! #NIKE'Spicy' NBA!
- Accurate Rubber Corporation is Proud to Announce ISO 9001:2015 Certification