Threat Category: Mobile threats | Page 2

Mobile malware statistics for Q1 2024: most common threats for Android, mobile banking Trojans, and ransomware Trojans.

In this report, we review the most significant malware-related events of Q1 2024: the disclosure of the hardware vulnerability used in Operation Triangulation, a lightweight method to detect iOS malware and DinodasRAT Linux implant.

In this report, we share our insights into the 2023 trends and statistics on financial threats, such as phishing, PC and mobile banking malware.

We review the new mobile Trojan banker SoumniBot, which exploits bugs in the Android manifest parser to dodge analysis and detection.

In this report, we share our latest Android malware findings: the Tambir spyware, Dwphon downloader and Gigabud banking Trojan.

In this report, Kaspersky shares statistics on stalkerware detections, as well as insights into the impact of digital stalking in 2023 and the beginning of 2024, and advice for those affected.

This report details statistics and key trends associated with mobile malware: Google Play Trojans, malicious messaging app mods, and others.

Analyzing Shutdown.log file as a lightweight method to detect indicators of infection with sophisticated iOS malware such as Pegasus, Reign and Predator.

Mobile threat statistics for Q3 2023 include data on malware, adware, banking Trojans and ransomware for Android devices.

Attacks on a critical infrastructure target in South Africa, supply-chain attack on Linux machines, Telegram doppelganger used to target people in China.

Gaming-related threat landscape in 2023: desktop and mobile malware disguised as Minecraft, Roblox and other popular games, and the most widespread phishing schemes.

A WhatsApp mod with a built-in spy module has been spreading through Arabic and Azeri Telegram channels since August 2023.

In this report Kaspersky shares insights into the validation components used in Operation Triangulation, TriangleDB implant post-compromise activity, as well as details of some additional modules.

Spyware Telegram mod in Uighur and Chinese spreads through Google Play stealing messages and other user data.

The smartphone malware statistics for Q2 2023 includes data for Android malware, adware, banking Trojans and ransomware.

Reports

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

Kaspersky GReAT experts uncovered a new campaign by Lazarus APT that exploits vulnerabilities in South Korean software products and uses a watering hole approach.

MysterySnail RAT attributed to IronHusky APT group hasn’t been reported since 2021. Recently, Kaspersky GReAT detected new versions of this implant in government organizations in Mongolia and Russia.

Kaspersky researchers analyze GOFFEE’s campaign in H2 2024: the updated infection scheme, new PowerModul implant, switch to a binary Mythic agent.

Mobile threats

IT threat evolution in Q1 2024. Mobile statistics

IT threat evolution Q1 2024

Financial cyberthreats in 2023

SoumniBot: the new Android banker’s unique techniques

Android malware, Android malware and more Android malware

The State of Stalkerware in 2023–2024

The mobile malware threat landscape in 2023

A lightweight method to detect potential iOS malware

IT threat evolution in Q3 2023. Mobile statistics

IT threat evolution Q3 2023

Gaming-related cyberthreats in 2023: Minecrafters targeted the most

WhatsApp spy mod spreads through Telegram, attacks Arabic-speaking users

The outstanding stealth of Operation Triangulation

Evil Telegram doppelganger attacks Chinese users

IT threat evolution in Q2 2023. Mobile statistics

Reports

Sleep with one eye open: how Librarian Ghouls steal data by night

Operation SyncHole: Lazarus APT goes back to the well

IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia

GOFFEE continues to attack organizations in Russia

Subscribe to our weekly e-mails