14.2 C
London
Saturday, June 19, 2021

Update COVID-19 08 November 2020

08 November 2020 — NIne (9) new COVID-19 cases were identified out of 1741 samples tested today. This brings the cumulative number of confirmed cases to five thousand, two hundred, and twenty-two (5222). To date, four thousand, nine hundred, and sixty (4960) patients have recovered, including seven (7) in the past 24 hours. The number…
More

    Latest Posts

    Online gaming revenue in India set to reach Rs 29,000 crore by ’25: KPMG report

    Home News Gaming (Image credit: Pixabay) Online gaming has boomed in India in the last few years and has become a financial beast that many had not predicted. And as the pandemic took over the nation, people resorted to gaming more and more which resulted in a boom for the industry. A new KPMG India report…

    Ukraine arrests ransomware gang in global cyber criminal crackdown

    Home News Computing (Image credit: Pexels) Ukranian police have raided the headquarters of the notorious Cl0p ransomware gang, seizing computer hardware used in its operations along with the equivalent of $184,000, which is most likely ransom money.According to Cybernews, the group has attacked several high profile targets mostly in the US, and South Korea, including…

    What is Bitdefender Box and what can it do?

    Home News Computing (Image credit: Bitdefender) Bitdefender Box is a mysterious looking, er, box, and on first catching sight of it, you might well wonder what on earth it’s for. How does it help with your antivirus needs? Is it a router of some kind?Well actually it's more than that, and looking at the product…

    Many remote employees end up paying for their own cybersecurity

    Home News Computing (Image credit: Image Credit: Geralt / Pixabay) While a majority of employees who work from home take their work cybersecurity seriously, quite a few end up paying for it out of their own pockets.VPNOverview surveyed over a thousand full-time remote employees to assess their attitude towards cybersecurity along with the evolving cybersecurity…

    Recognizing and guarding against SMS FluBot phishing scams

    Recognizing and guarding against SMS FluBot phishing scams

    (Image credit: Shutterstock)

    In recent weeks, mobile users in several countries have been receiving SMS messages linking to a banking Trojan called “FluBot”. This threat pretends to be from a delivery company and asks users to install a tracking app in order to track the status of the package, but in fact is used to steal credentials and other personal data. At Avast we’re continuing to see new samples of FluBot coming in daily via our mobile threat intelligence platform apklab.io.

    About the author

    Ondrej David is Malware Analysis Team Leader at Avast.

    According to recent research, FluBot so far has already infected 60,000 devices and the total number of phone numbers collected by the attackers was estimated at 11 million by late February/early March.

    The first FluBot attacks have been reported weeks ago, and we still see tens of new sample versions evolving every day. At the moment, primary targets of the attacker’s campaign are the U.K., Spain, Italy, Germany, Hungary and Poland. But we expect that the scope of operation may be extended to target other countries in the very near future. The rapid continuation of this campaign shows that it is successful, and users must be made aware of the threat so that they can guard against it.

    How FluBot works

    FluBot is an example of an SMS-based malware campaign. It spreads by sending SMS messages claiming the recipient has a package delivery and urges them to download a tracking app using the included link. If the recipient clicks on the link, they are taken to a site that offers to download the app. The app is malware that, when installed, steals the victim’s contact information and uploads them to a remote server. This information is later used by the server to send additional messages and further distribute the malicious SMS messages to those contacts.

    The malicious app uses an Android component known as Accessibility to monitor the device, and to take control of it. For instance, this enables it to show high priority window overlays; in other words, the malware can show something over anything that’s currently on the screen. For example, a fake banking portal displayed over a legitimate banking app activity. If the user enters his or her credentials on that overlay screen, they would risk being stolen.

    This component is also exploited by the malware as a self-defense mechanism to cancel any uninstallation attempts by affected users, which makes it difficult to remove from infected devices.

    How does a FluBot SMS look?

    What makes this malware particularly successful is that it disguises itself as postal/parcel delivery services, using text along the lines of ‘Your parcel is arriving, download the app to track’ or ‘You missed your parcel delivery, download the app to track’, to which a lot of unsuspecting users would easily fall victim. This is especially the case in the current situation where some form of home delivery has become the standard mode of operation for many businesses during the pandemic.

    Cybercriminals are taking advantage of trends and current events to make sure they attract as many potential victims as possible. During the pandemic, more people have grown used to online shopping and it is not uncommon to regularly be receiving parcels and packages. Two-thirds of consumers have increased their online shopping activities compared to before the pandemic.

    How to protect yourself from FluBot?

    First and foremost, install an antivirus solution that prevents threats like FluBot. Also, if you think you already are affected by FluBot, you can install an antivirus app to run a scan on your device to identify the malware. If it is found, it’s advisable you reboot your device to safe mode and uninstall the detected application from there. With this step, all other third party applications will be disabled momentarily too, but they will be active again with the next regular reboot.

    If users think they may have been victim of credential theft via this attack, it’s advisable to reset any passwords for services they feel might have been compromised, such as banking and shopping apps.

    Users can also protect themselves from FluBot and other mobile phishing attacks by following measures below:

    1. Do not click on links in SMS messages. Especially if a message is asking you to install software or apps on your devices.
    2. Be a skeptic. Err on the side of caution with any suspicious SMS. If you receive a communication you weren’t expecting, it is always best to call the company yourself using the contact information provided on their legitimate website, to confirm the message received. Don’t reply directly to suspicious communication. Always begin a new communication via the company’s official service channels.
    3. Question the message. It is important that you train your eyes to detect phishing messages. These tend to be generic and spread to the masses, as well as automated messages or messages that present an offer that seems too good to be true (i.e. how to win a new smartphone or inherit a large sum of money from an unknown family member).
    4. Do not install apps from anywhere but the official app stores. Most major shipping companies have their own apps available for download at trusted stores like Google Play or the Apple App Store. Also, set your mobile device’s security to only install apps from trusted sources like Google Play or the Apple App Store.

    Awareness is the key for defending users against phishing scams such as FluBot, and at a time when many are distracted by world events it is understandable to see a rise in successful attacks. At Avast, we are committed to empowering people with tools to protect themselves against these threats and are working to make the internet a safe place for everyone.

    Latest Posts

    Online gaming revenue in India set to reach Rs 29,000 crore by ’25: KPMG report

    Home News Gaming (Image credit: Pixabay) Online gaming has boomed in India in the last few years and has become a financial beast that many had not predicted. And as the pandemic took over the nation, people resorted to gaming more and more which resulted in a boom for the industry. A new KPMG India report…

    Ukraine arrests ransomware gang in global cyber criminal crackdown

    Home News Computing (Image credit: Pexels) Ukranian police have raided the headquarters of the notorious Cl0p ransomware gang, seizing computer hardware used in its operations along with the equivalent of $184,000, which is most likely ransom money.According to Cybernews, the group has attacked several high profile targets mostly in the US, and South Korea, including…

    What is Bitdefender Box and what can it do?

    Home News Computing (Image credit: Bitdefender) Bitdefender Box is a mysterious looking, er, box, and on first catching sight of it, you might well wonder what on earth it’s for. How does it help with your antivirus needs? Is it a router of some kind?Well actually it's more than that, and looking at the product…

    Many remote employees end up paying for their own cybersecurity

    Home News Computing (Image credit: Image Credit: Geralt / Pixabay) While a majority of employees who work from home take their work cybersecurity seriously, quite a few end up paying for it out of their own pockets.VPNOverview surveyed over a thousand full-time remote employees to assess their attitude towards cybersecurity along with the evolving cybersecurity…

    Don't Miss

    Germany’s CureVac COVID-19 vaccine flops in clinical trial

    German biopharmaceutical company CureVac's COVID-19 mRNA vaccine candidate revealed a disappointing 47% efficacy against COVID-19 disease of any severity, and failed to meet statistical success criteria in a late-stage trial, sending stocks tanking."In the unprecedented context of at least 13 variants circulating within the study population subset assessed at this interim analysis, CVnCoV demonstrated an…

    Ortagus: Biden, Obama believed China’s rise, American decline was ‘inevitable’

    Former State Department Spokeswoman Morgan Ortagus sat down with "Fox & Friends" and blasted President Biden and former President Obama for their handling of China. Biden pushed back on the assertion that he and Chinese President Xi Jinping were "old friends" at a press conference on Wednesday.MORGAN ORTAGUS: It would be admitting that he had…

    Madden 22 cover will feature NFL’s top quarterbacks

    Madden 22 will have the two top quarterbacks in the NFL on its cover when the game is released later this year.Tom Brady and Patrick Mahomes will be featured as the two co-cover athletes for the game. EA Sports officially announced the Tampa Bay Buccaneers and Kansas City Chiefs stars on Thursday.CLICK HERE FOR MORE…

    Biden starts to call Putin ‘President Trump’ at press conference

    President Biden raised eyebrows with an odd gaffe during his press conference following a summit with Russian President Vladimir Putin, in which he appeared to mistakenly use the name of his own predecessor when discussing the Russian leader.Biden spoke after Putin gave a separate press conference, and was reflecting on what he said about the…

    ‘Top’ Chef star Padma Lakshmi dating poet Terrance Hayes, source says: ‘It’s early days’

    Padma Lakshmi is enjoying a sweet summer romance.The "Top Chef" host is dating poet and MacArthur fellowship recipient Terrance Hayes, a source confirmed to PEOPLE magazine on Wednesday."It’s early days and they’re still getting to know each other," the insider claimed.A rep for the 50-year-old didn’t immediately respond to Fox News’ request for comment.PADMA LAKSHMI…

    Stay in touch

    To be updated with all the latest news, offers and special announcements.

    × Share your content