Lucene search
K

20 matches found

Securelist
Securelist
added 2025/04/25 10:0 a.m.19 views

Triada strikes back

Introduction Older versions of Android contained various vulnerabilities that allowed gaining root access to the device. Many malicious programs exploited these to elevate their system privileges and gain persistence. The notorious Triada Trojan also used this attack vector. With time, the...

8.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/03 7:34 a.m.18 views

Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices

Counterfeit versions of popular smartphone models that are sold at reduced prices have been found to be preloaded with a modified version of an Android malware called Triada. "More than 2,600 users in different countries have encountered the new version of Triada, the majority in Russia," Kaspers...

7.7AI score
Exploits0
HackRead
HackRead
added 2023/07/10 7:24 p.m.22 views

Triada Malware Infects Android Devices via Fake Telegram App

By Waqas Fortunately, the infected version of Telegram carrying Triada malware is being distributed through third-party stores rather than the official Google Play Store. This is a post from HackRead.com Read the original post: Triada Malware Infects Android Devices via Fake Telegram App...

7AI score
Exploits0
Securelist
Securelist
added 2022/11/18 8:5 a.m.18 views

IT threat evolution in Q3 2022. Mobile statistics

IT threat evolution in Q3 2022 IT threat evolution in Q3 2022. Non-mobile statistics IT threat evolution in Q3 2022. Mobile statistics These statistics are based on detection verdicts of Kaspersky products received from users who consented to providing statistical data. Quarterly figures Accordin...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2022/11/17 12:36 p.m.26 views

Chinese Hackers Using 42,000 Imposter Domains in Massive Phishing Attack Campaign

A China-based financially motivated group is leveraging the trust associated with popular international brands to orchestrate a large-scale phishing campaign dating back as far as 2019. The threat actor, dubbed Fangxiao by Cyjax, is said to have registered over 42,000 imposter domains, with initi...

1.3AI score
Exploits0
The Hacker News
The Hacker News
added 2022/10/13 7:39 a.m.51 views

Modified WhatsApp App Caught Infecting Android Devices with Malware

An unofficial version of the popular WhatsApp messaging app called YoWhatsApp has been observed deploying an Android trojan known as Triada. The goal of the malware is to steal the keys that "allow the use of a WhatsApp account without the app," Kaspersky said in a new report. "If the keys are...

0.6AI score
Exploits0
Securelist
Securelist
added 2022/10/12 8:0 a.m.16 views

Malicious WhatsApp mod distributed through legitimate apps

Last year, we wrote about the Triada Trojan inside FMWhatsApp, a modified WhatsApp build. At that time, we discovered that a dropper was found inside the distribution, along with an advertising SDK. This year, the situation has repeated, but with a different modified build, YoWhatsApp version...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2022/05/09 10:38 a.m.28 views

Another Set of Joker Trojan-Laced Android Apps Resurfaces on Google Play Store

A new set of trojanized apps spread via the Google Play Store has been observed distributing the notorious Joker malware on compromised Android devices. Joker, a repeat offender, refers to a class of harmful apps that are used for billing and SMS fraud, while also performing a number of actions o...

Exploits0
ThreatPost
ThreatPost
added 2021/08/24 4:27 p.m.47 views

Custom WhatsApp Build Delivers Triada Malware

Triada malware, both pernicious and persistent, has resurfaced. Its most recent sighting is buried inside an advertising component of a modified version of the popular WhatsApp messenger called FM WhatsApp. The malware, first spotted by researchers at Kaspersky in 2016, is a type of mobile...

7.5AI score
Exploits0References5
The Hacker News
The Hacker News
added 2021/08/24 12:28 p.m.51 views

Modified Version of WhatsApp for Android Spotted Installing Triada Trojan

A modified version of the WhatsApp messaging app for Android has been trojanized to intercept text messages, serve malicious payloads, display full-screen ads, and sign up device owners for unwanted premium subscriptions without their knowledge. "The Trojan Triada snuck into one of these modified...

1.5AI score
Exploits0
Securelist
Securelist
added 2021/08/24 10:0 a.m.34 views

Triada Trojan in WhatsApp mod

WhatsApp users sometimes feel the official app is lacking a useful feature of one sort or another, be it animated themes, self-destructing messages which automatically delete themselves, the option of hiding certain conversations from the main list, automatic translation of messages, or the optio...

7.2AI score
Exploits0
Securelist
Securelist
added 2021/04/09 4:58 p.m.280 views

Malicious code in APKPure app

Recently, weve found malicious code in version 3.17.18 of the official client of the APKPure app store. The app is not on Google Play, but it is itself a quite a popular app store around the world. Most likely, its infection is a repeat of the CamScanner incident, when the developer implemented a...

6.8AI score
Exploits0
Securelist
Securelist
added 2020/07/06 10:0 a.m.58 views

Pig in a poke: smartphone adware

Our support team continues to receive more and more requests from users complaining about intrusive ads on their smartphones from unknown sources. In some cases, the solution is quite simple. In others, the task is far harder: the adware plants itself in the system partition, and trying to get ri...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2020/04/07 5:6 p.m.76 views

xHelper: The Russian Nesting Doll of Android Malware

The “undeletable” xHelper malware – which ultimately results in the installation of the Triada trojan – has become a virulent scourge for Android devices this year, according to researcher analysis – bringing with it a hallmark of being virtually indestructible for the common user. xHelper is kno...

0.6AI score
Exploits0References11
Securelist
Securelist
added 2020/04/07 9:0 a.m.76 views

Unkillable xHelper and a Trojan matryoshka

It was the middle of last year that we detected the start of mass attacks by the xHelper Trojan on Android smartphones, but even now the malware remains as active as ever. The main feature of xHelper is entrenchment — once it gets into the phone, it somehow remains there even after the user delet...

7.2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2019/06/25 3:24 p.m.121 views

Tracing the Supply Chain Attack on Android

Earlier this month, Google disclosed that a supply chain attack by one of its vendors resulted in malicious software being pre-installed on millions of new budget Android devices. Google didn't exactly name those responsible, but said it believes the offending vendor uses the nicknames "Yehuo" or...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2019/06/21 4:42 p.m.209 views

Backdoor Built into Android Firmware

In 2017, some Android phones came with a backdoor pre-installed: Criminals in 2017 managed to get an advanced backdoor preinstalled on Android devices before they left the factories of manufacturers, Google researchers confirmed on Thursday. Triada first came to light in 2016 in articles publishe...

0.9AI score
Exploits0
HackRead
HackRead
added 2019/06/11 9:30 p.m.51 views

Google confirms presence of Triada backdoor in cheap Android phones

By Uzair Amir Triada Banking Trojan came Preinstalled as Backdoor in Budget Android Smartphones- Google Confirms. It would probably be the first time ever in Google's history that the company has revealed details of the tenacity and success of malware dubbed as Triada. Triada malware was discover...

1.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/03/12 5:36 p.m.42 views

A week in security (March 05 – March 11)

Last week on Malwarebytes Labs, we paid homage to several women in tech, including some of our very own, on International Women's Day and shared their stories. We also looked into an adware posing as an Android app that claims to live stream the 2018 Winter Olympics, exposed scammers that go by t...

6.5AI score
Exploits0
ThreatPost
ThreatPost
added 2016/06/20 1:34 p.m.12 views

Mobile Triada and Horde Variants Bypass Android Security

Two mobile variants of Triada and Horde malware have been spotted in the wild by Check Point Software Technologies researchers who warn the latest samples have adopted dangerous new techniques including the ability to evade Google’s security on some OS versions. The Android Trojan called Triada,...

1.4AI score
Exploits0References5
Rows per page
Query Builder