Our analysis of TrickMo suggests that many of these samples remain undetected by the broader security community.
All posts by Aazim Yaswant
Posts by Aazim Yaswant:
Unveiling the Persisting Threat: Iranian Mobile Banking Malware Campaign Extends Its Reach
Research by Aazim Bill SE Yaswant and Vishnu Pratapagiri In July 2023, it was discovered that an Android mobile campaign, which consisted of banking trojans, was targeting major Iranian banks. Zimperium’s research team recently found that the campaign not only remains active but also extended its capabilities. These newly found samples are completely […]
Financially Motivated Mobile Scamware Exceeds 100M Installations
Research by Aazim Bill SE Yaswant and Nipun Gupta While some financially motivated scams may seem simple on the surface, the truth of the matter is that cybercriminals are investing large amounts of money into strategies and infrastructure to scale up their malicious campaigns. Those investments are paying off as […]
PhoneSpy: The App-Based Cyberattack Snooping South Korean Citizens
Update November 22, 2021: It has been determined that this specific campaign is no longer active. The command and control server has been taken down, and the infected devices are no longer under the control of the attackers. Many of the malware campaigns we have detected over the last year […]
GriftHorse Android Trojan Steals Millions from Over 10 Million Victims Globally
Research and writeup by Aazim Yaswant and Nipun Gupta With the increase of mobile device use in everyday life, it is no surprise to see cybercriminals targeting these endpoints for financial crimes. Zimperium zLabs recently discovered an aggressive mobile premium services campaign with upwards of 10 million victims globally, and […]
FlyTrap Android Malware Compromises Thousands of Facebook Accounts
A new Android Trojan codenamed FlyTrap has hit at least 140 countries since March 2021 and has spread to over 10,000 victims through social media hijacking, third-party app stores, and sideloaded applications. Zimperium’s zLabs mobile threat research teams recently found several previously undetected applications using Zimperium’s z9 malware engine and […]
New Advanced Android Malware Posing as “System Update”
Another week, and another major mobile security risk. A few weeks ago, Zimperium zLabs researchers disclosed unsecured cloud configurations exposing information in thousands of legitimate iOS and Android apps (you can read more about it in our blog). This week, zLabs is warning Android users about a sophisticated new malicious […]
Elaborate Scam App Impersonates Leading Asian Bank; Victims Duped into ‘Investing’
Campaign is still active and growing; second bank app identified Zimperium, in collaboration with a leading Asian bank, have uncovered the early stages of a coordinated effort by scammers to defraud existing and new bank customers. In this blog, we will: Alert the general public about the scam before it […]
Joker is No Laughing Matter: 64 New Variants Discovered in Less Than a Month
As part of Google’s App Defense Alliance, Zimperium helps make the Android ecosystem safer by processing all apps before they reach Google Play. However, malicious applications can find their way to user’s devices through third party stores, sideloaded applications and malicious websites that trick users into downloading and installing apps. […]
Zimperium Discovers MobOk Malware Left Undetected by AV Industry for Months
zLabs researchers have uncovered a new variant of the MobOk campaign. The samples found evaded detection by AV vendors for months. Zimperium worked with Google to ensure removal from the Play Store. The new variant samples: Hide themselves from mobile antivirus (AV) vendors; Subscribe to premium mobile services; Avoid image-based […]