Trojan using Baidu Cloud Push service found on Google Play Store

Looks like Remote Administration Trojan (RAT), threat named Cajino using Baidu Cloud Push, a new way to communicate with server, wasn’t only on alternative Android markets. Trojan was found on official Google Play Store with more than 50.000 downloads for more than a month. Cajino available on Google Play Store “Some samples, under a certain

Continue reading Trojan using Baidu Cloud Push service found on Google Play Store

Remote administration trojan using Baidu Cloud Push service

I recently discovered a remote administration trojan (RAT), there is nothing interesting about it but what is is that it is the first one I saw that communicates with server through Baidu Cloud Push notifications.Baidu Cloud Push service is similar to Google Cloud Messaging (GCM) it allows you to send data from your server to

Continue reading Remote administration trojan using Baidu Cloud Push service

Russian ransomware pretends to be from Ministry internal affairs of Russia

Ransomware can lock your phone accusing you from viewing scenes of pedophilia and other perversions. In order to unlock your phone it demands (500 rubles ~ 7.6 Euro) within 36 hours. Malware comes with simple icon and name (“DDDDDDDDD”). App icon Overview After launching you will be prompted to grant device admin access to the

Continue reading Russian ransomware pretends to be from Ministry internal affairs of Russia

Banker backdoor makes your device his b*tch

Russian backdoor makes your phone its bot by receiving commands from command & control (C&C) server or through Google Cloud Messaging (GCM) push notification. Malware attempts to obtain your credit card information, while acting as Play Market. Overview By installing application you will get a “romantic” icon in your launcher with fishy name “System”. Backdoor

Continue reading Banker backdoor makes your device his b*tch