Trending...
- 'Wild Hermit Wellness' Has Achieved Bestseller Status in Just 2 Months Since Launch Of Organic Skincare Line
- Phinge Announces Proposal to Combat Billions in Government Waste, Fraud, and Abuse with Proactive, Hardware-Verified Netverse App-Less Platform
- Phinge's Netverse to Redefine Clinical Trial Safety and Data Integrity with Netverse Patented, Hardware-Verified Platform
Threat actors exploit consumer trust in legitimate government apps to plant malicious packages
AMSTERDAM - Michimich -- EclecticIQ, the global provider of cyber threat intelligence (CTI) technology solutions, has teamed up with fraud and cybercrime prevention experts at ThreatFabric to publish the findings of an investigation into instances of threat actors actively pushing malicious Android packages disguised as legitimate contact tracing applications.
Key analysis points by ThreatFabric and EclecticIQ reveal that:
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on Michimich.com
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on Michimich.com
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Key analysis points by ThreatFabric and EclecticIQ reveal that:
- Threat actors have been disguising Android packages as legitimate government-backed contact tracing applications for financial gain.
- There is evidence to suggest that actors have used repackaged commodity and open-source malware to lower the investment required in the observed campaigns.
- Third-party port forwarding, and secure tunneling services have probably been used to provide anonymization to command and control (C2) infrastructure.
- The Android packages were probably delivered through links pointing to phishing pages.
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on Michimich.com
- The Mobile-First Company Raises $12M to Build Simple, Powerful Software for Small Teams
- Lick Pineapple Flavored Massage Oil Outperforming and Enticing
- Cerberus ODC in Collaboration with NVIDIA Launches All-American AI-RAN Stack, Enabling AI-Native 5G Today and Accelerating the Path to 6G
- National Compliance Firm issues Artificial Intelligence Policy Program for Mortgage Banking
- Pastor Darrell Armstrong Suspends Gubernatorial Campaign And Endorses Mikie Sherrill
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
- Read full report here
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on Michimich.com
- Dr. Johnny Shanks Attends Full Arch Growth Conference 2025
- Offline Asset Protection: NJTRX Implements 98 Percent Cold Storage as Industry Faces 2 Billion USD Losses
- Thousands of Smiles, Millions of Logo Views: RoarFun Brings Emotions Into Premium Retail Spaces with Formula Simulator for Immersive Brand Activation
- Qvarz LLC Expands Global Reach with High-Precision Quartz Cuvettes and Optical Components
- $300 Million Web3 Initiative and ZIGChain Partnership Power $20 Target in Noble Capital Markets Report for SEGG Media (N A S D A Q: SEGG)
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Source: EclecticIQ
0 Comments
Latest on Michimich.com
- J French's #1 Album "I Don't Believe in Bad Days" Enters the Grammy Conversation
- Words of Veterans & Veterans Growing America Collaboration
- Mature Athlete - Want Elite, Web-Based Nutrition and Training Coaching?
- Engaged at Any Age: 73-Year-Old Client Finds True Love Through Elite Asian Matchmaker
- Launch of Professional Private Autopsy Services to Support Families, Professionals, and Researchers
- He Started a New Career at 77; Maybe Not His Last
- "The Art of Philanthropy" — A Year-Long Campaign Supporting the USO and Military Veterans
- TRUE Palliative Care Launches as California Strengthens Commitment to Compassionate Care Under SB 403
- Mysterious Interstellar Object 3I/ATLAS Appears to Pause Near Mars, Exhibiting Periodic Light Pulses
- $73.6 Million in Order Backlog Poised for Explosive Growth in 2026; Streamlined Share Structure: Cycurion, Inc. (N A S D A Q: CYCU) $CYCU
- Osric Langevin Unveils "Quantitative Trend" Framework for Multi-Asset Analysis in Q4 2025
- Experience Days Named Among the UK's Top Christmas Gifts
- New Free Educational Bingo Cards Make Learning English Fun for First Graders
- Wzzph Provides Stablecoin Trading Solutions for Latin American Traders Amid Digital Currency Policy Adjustments
- NaturismRE Calls for Recognition of AI as Sentient Kin in Global Bill of Rights
- PDS Plumbing & Air Honors Veterans with "Free Tune-Up & A Turkey" Giveaway
- AgeImmune Announces the Launch of ImmuneG.I. — A Doctor-Formulated Herbal Supplement Supporting Gut and Digestive Wellness
- Precision Adult Care Unveils Essential Guidelines for Choosing a Senior Home Care Company
- Postmortem Pathology Delivers Expert Private Autopsy Services with Compassion and Precision
- Colorado Families Turn to Private Autopsies for Peace of Mind