Malware news trending on Google


    The first news that is related to malicious software and is trending heavily on Google is related to SolarMarker malware that can steal credentials and act as a backdoor for other cyber attacks.

    Security researchers from Sophos have found that the malware tricks the Windows Registry system and dodges the regular defense-line to enter the victim’s computer and then the network.

    Mostly it is found targeting businesses operating in education and healthcare sector and is seen disguising itself as legitimate applications such as Adobe Acrobat, WonderShare PDF Element, Nitro Pro and such.

    Second is the news related to an Iranian Hacking Group named MuddyWater that is currently targeting organizations operating in Turkey with a data stealing malware named Bootstrap.

    According to researchers from Cisco Talos, MuddyWater is an Advanced Persistent Threat that is being funded by the Iranian Ministry of Intelligence and Security (MOIS) and has recently devised bootstrap malware that needs some more time to be analyzed.

    Third is the news related to 2FA Authenticator that is seen distributing malware. In practical, the said application is working as promoted. But in the background, 2FA Authenticator found in Google Play does nothing to improve security and instead seeks permissions from the user to install updates directly from the internet, instead of the Google Play.

    Pradeo, the France-based mobile security firm, was the first to discover the malware and its malevolent behavior in the digital store of Google Play.

    Coming to the fourth news related to malware, it is a known fact that investing in Cryptocurrency has surged by 70% in recent times. And so cyber criminals have targeted those using cryptocurrency wallets by siphoning data related to passwords and security phrases.

    Bitdefender says that Bhunt malware is hard to detect as it is using Themida and VMProtect to masquerade itself in the infecting machines and remains so till weeks or sometimes months. It then disguises itself as KMS Microsoft License Activation system or a CCleaner and starts stealing data from the wallets.

    Currently, the Bhunt Malware is found concentrated among digital users of India and Africa and might take very little time to sneak itself into developed western countries.

    Naveen Goud
    Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

    No posts to display