10/08/2021 12:18 GMT+7
Security firm Zimperium has just discovered a new Android trojan that attacks more than 10,000 victims in 140 countries around the world.
Zimperium experts named the trojan FlyTrap. It can spread through social networks, third-party applications and sideload applications since March. According to the research team, the malicious code uses social network tricks to compromise Facebook accounts. After infecting an Android device, an attacker can collect information from the victim such as Facebook ID, location, email address, IP address, cookies, tokens associated with Facebook accounts.
This information is then used to spread malicious code, take advantage of the victim’s reputation on social networks through private messages with links to trojans, or deploy propaganda/fake news campaigns using geographical location of the victim.
The above techniques are especially effective in the digital world and are often used by cybercriminals to spread malicious code from one victim to another. They use a number of topics that victims find interesting such as Netflix discount codes, Google AdWords discount codes or voting for the best player or team.
Specifically, after the victim downloads the app, it will urge them to join and ask for Facebook account information to vote for something or collect a discount code. However, after entering everything, the application leads the victim to a screen stating that the discount code has expired.
After receiving the report from Zimperium, Google verified and removed every app from the marketplace. But there are still 3 other applications available on unsafe third-party app stores. FlyTrap is just one of the existing threats aimed at mobile devices to steal information.
Du Lam (According to ZDN)
Service to crash Instagram account costs 60 USD
Anyone can request to take down someone else’s Instagram account for $60. Some places even offer services for as little as 5 EUR.