MALWARE Posts on XDA

PSA: Rescue your phone from the FluBot SMS malware with malninstall

FluBot is an Android-targeting malware that impersonates other apps on a victim's phone to steal their banking credentials and other private information. It spreads through SMS and can eavesdrop on incoming notifications, read and write SMSes, make calls, and transmit the victims' entire contact list back to its control center. The virus also lures victims...

Apple M1 Macs face their first malware via an adware extension

A lot of people might argue that Mac is comparatively safer than Windows. While that is largely true, the past few years have seen a steady increase which has become a cause of concern. A new malware has now been spotted, which is said to be the first such malicious piece of software targeting Apple's...

Popular Barcode Scanner app caught infecting Android smartphones

A popular barcode scanner app with over 10 million downloads on the Google Play Store has been caught infecting Android devices with malware. The app, simply dubbed Barcode Scanner, has since been removed from the Play Store, but it likely still remains there on many of the infected devices. As the name implies, the Barcode Scanner...

PSA: If you use NoxPlayer to play Android games on PC, you should read this

NoxPlayer users beware. A hacker group has gained access to the Android emulator's server infrastructure and has pushed malware to a few users in Asia. Slovak security firm ESET recently discovered the attack, and it has advised affected NoxPlayer users to reinstall the emulator to remove the malware from their systems. For the unaware, NoxPlayer is...

This Cyberpunk 2077 Mobile listing is such an obvious scam, we shouldn’t even have to warn you

From being one of the most hyped games of 2020 to becoming one of the bigger disappointments, the chaos around Cyberpunk 2077 does not seem to end. There is now apparently a mobile version of the game that is luring users into installing malware on their Android devices. As per reports, a threat actor is spreading...

The U.S. Government funded smartphones which come with pre-installed malware

A U.S. Government-funded smartphone comes with pre-installed malware, researchers at Malwarebytes have discovered. The malware can't be removed without rendering the device unusable. The smartphone in question is the UMX U683CL and is sold as part of Virgin Mobile's Assurance Wireless program. This is a federal Lifeline Assistance program. Founded by the FCC in 1985, Lifeline...

Google partners with ESET, Lookout, and Zimperium to improve Play Protect’s detection of malware before it hits the Play Store

The Google Play Store is the central point of app distribution on Google's Android, enabling thousands of developers to distribute their apps to millions of users around the world. This high traffic medium thus becomes a lucrative channel for bad actors to propagate their own malware. Google realized the potential of abuse, and so, at...

[Update 2: Back in Play Store] CamScanner app caught injecting malware on Android devices

If you are someone who frequently works around text documents, you very likely have used CamScanner in the past, or are using it in the present. CamScanner has been around the very early days of Android, presenting itself as a solution to use the camera on your smartphone as a document scanner. The app allows...

Samsung Galaxy S10 will have McAfee pre-installed for “anti-malware protection”

In a move that is bound to raise eyebrows, McAfee has announced at MWC 2019 that it is extending its partnership with Samsung to pre-install anti-malware protection powered by McAfee VirusScan onto the Samsung Galaxy S10. McAfee has partnered with Samsung previously, allowing the software security company to pre-install "anti-malware protection powered by McAfee VirusScan" onto...

Every Android device is susceptible to a hardware vulnerability called RAMpage

We have consistently seen various vectors of attack rear their head when it comes to Android smartphones. We've seen Shattered Trust, Cloak and Dagger, and Rowhammer, just to name a few. RAMpage is the latest one on the block, and while it is a hardware vulnerability, it doesn't necessarily need physical access to your device...

Amazon Fire TV and Fire TV Stick Devices are being Infected with Cryptocurrency Malware

Several users in our forums have reported that their Amazon Fire TV and Amazon Fire TV Stick devices have suddenly become very slow to use. This sudden slowdown coincides with the appearance of an app simply called "test" that keeps popping up randomly. Not only is the popup annoying, but it also causes video playback...

“AdultSwine” Play Store Malware Shows Pornography in Games for Kids

Researchers at Check Point have discovered new malware hidden in about 60 games and applications on the Google Play Store. It's dubbed "AdultSwine", and it displays pornographic advertisements, entices users to install fake security applications, and tries to make users sign up for premium services. The infected apps, which are mostly aimed at children, have been downloaded...