Screenshot-Reading Malware

Read Time:25 Second

Kaspersky is reporting on a new type of smartphone malware.

The malware in question uses optical character recognition (OCR) to review a device’s photo library, seeking screenshots of recovery phrases for crypto wallets. Based on their assessment, infected Google Play apps have been downloaded more than 242,000 times. Kaspersky says: “This is the first known case of an app infected with OCR spyware being found in Apple’s official app marketplace.”

That’s a tactic I have not heard of before.

Friday Squid Blogging: A New Explanation of Squid Camouflage

New research: An associate professor of chemistry and chemical biology at Northeastern University, Deravi’s recently published paper in the Journal...

March 21, 2025

Arrests in Tap-to-Pay Scheme Powered by Phishing

Authorities in at least two U.S. states last week independently announced arrests of Chinese nationals accused of perpetrating a novel...

March 21, 2025

My Writings Are in the LibGen AI Training Corpus

The Atlantic has a search tool that allows you to search for specific works in the “LibGen” database of copyrighted...

March 21, 2025

Albabat Ransomware Evolves to Target Linux and macOS

Trend Micro observed a continuous development of Albabat ransomware, designed to expand attacks and streamline operations Read More

March 21, 2025

Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign

A security researcher has observed threat actors exploiting vulnerabilities in a driver used by CheckPoint’s ZoneAlarm antivirus to bypass Windows...

March 21, 2025

NCSC Releases Post-Quantum Cryptography Timeline

The UK’s National Computer Security Center (part of GCHQ) released a timeline—also see their blog post—for migration to quantum-computer-resistant cryptography....

March 21, 2025

Friday Squid Blogging: A New Explanation of Squid Camouflage

Arrests in Tap-to-Pay Scheme Powered by Phishing

My Writings Are in the LibGen AI Training Corpus

Albabat Ransomware Evolves to Target Linux and macOS

Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign

NCSC Releases Post-Quantum Cryptography Timeline

Attackers Use Fake CAPTCHAs to Deploy Lumma Stealer RAT

Active Lumma Stealer Campaign Impacting U.S. SLTTs

BlackLock ransomware: What you need to know

Friday Squid Blogging: A New Explanation of Squid Camouflage

Arrests in Tap-to-Pay Scheme Powered by Phishing

My Writings Are in the LibGen AI Training Corpus

Albabat Ransomware Evolves to Target Linux and macOS

Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign

NCSC Releases Post-Quantum Cryptography Timeline