Unit 42
Xbash Combines Botnet, Ransomware, Coinmining in Worm that Targets Linux an...
Unit 42 researchers discover Xbash, a new malware family tied to the Iron Group targeting Linux and Microsoft Servers
Get to know
Sort By:
Unit 42
IoT Malware Evolves to Harvest Bots by Exploiting a Zero-day Home Router Vu...
Unit 42 researchers outline the evolution of Satori, a malware family targeting zero-day vulnerabilities in IoT devices
Unit 42
New IoT/Linux Malware Targets DVRs, Forms Botnet
Unit 42 researchers have identified a new variant of the IoT/Linux botnet “Tsunami”, which we are calling “Amnesia”.
Unit 42
DualToy: New Windows Trojan Sideloads Risky Apps to Android and iOS Devices
Over the past two years, we’ve observed many cases of Microsoft Windows and Apple iOS malware designed to attack mobile devices. This attack vector is increasingly popular with malicious actors as almost …
Unit 42
AceDeceiver: First iOS Trojan Exploiting Apple DRM Design Flaws to Infect A...
We’ve discovered a new family of iOS malware that successfully infected non-jailbroken devices we’ve named “AceDeceiver”. What makes AceDeceiver different from previous iOS malware is that instead of abusing enterprise certificates as …
Sort By:
Malware, Threat Prevention, Unit 42
Update: XcodeGhost Attacker Can Phish Passwords and Open URLs through Infec...
On Thursday we posted the initial analysis report on XcodeGhost malware and then found it had infected 39 iOS apps, potentially impacting hundreds of millions of users. XcodeGhost embedded malicious code into …
Malware, Mobility, Threat Advisories - Advisories, Threat Prevention, Unit 42
Cardbuyer: New Smart Android Trojan Defeats Multi-factor Verification and S...
On April 21st our WildFire analysis cloud detected a new Android Trojan, which is currently completely undetected in VirusTotal and uses a new combination of tactics to make money for the author. …
Threat Advisories - Advisories, Threat Prevention, Unit 42
Funtasy Trojan Targets Spanish Android Users with Sneaky SMS Charges
Summary A new Android Trojan, named Funtasy, began targeting Spanish Android users in mid-April. Users have downloaded 18 different variants of Funtasy between 13,500 and 67,000 times from the Google Play store. …
Application Advisory/Analysis, Malware, Mobility, Threat Advisories - Advisories, Threat Prevention, Unit 42
SMS-Based In-App Purchase on Android Is Not Worth The Risk
In-App Purchase (IAP) has become a popular way to sell services and virtual items through mobile applications. In the Android ecosystem, in addition to the official IAP service by Google, there are …
Threat Advisory/Analysis, Unit 42
Insecure Internal Storage in Android
Today, Palo Alto Networks researcher Claud Xiao is delivering a presentation titled “Insecure Internal Storage in Android” at the Hacks in Taiwan Conference (HITCON). Claud is discussing techniques for accessing private data …