Screenshot-Reading Malware

Read Time:25 Second

Kaspersky is reporting on a new type of smartphone malware.

The malware in question uses optical character recognition (OCR) to review a device’s photo library, seeking screenshots of recovery phrases for crypto wallets. Based on their assessment, infected Google Play apps have been downloaded more than 242,000 times. Kaspersky says: “This is the first known case of an app infected with OCR spyware being found in Apple’s official app marketplace.”

That’s a tactic I have not heard of before.

Critical GitHub Attack

This is serious: A sophisticated cascading supply chain attack has compromised multiple GitHub Actions, exposing critical CI/CD secrets across tens...

March 20, 2025

Rooted Devices 250 Times More Vulnerable to Compromise

Rooted devices are 250 times more vulnerable to security incidents, Zimperium warned Read More

March 20, 2025

Smashing Security podcast #409: Peeping perverts and FBI phone calls

In episode 409 of the "Smashing Security" podcast, we uncover the curious case of the Chinese cyber-attack on Littleton's Electric...

March 20, 2025

UK CNI Security Leaders Express Confidence in Cybersecurity, Despite 95% Breach Rate

Bridewell has released its annual report on critical infrastructure security leaders’ perceived cybersecurity maturity and threats Read More

March 20, 2025

UK Police Arrest 422 in Major Fraud Crackdown

February’s Operation Henhouse resulted in hundreds of arrests and the seizure of £7.5m Read More

March 20, 2025

Over Half a Million Hit by Pennsylvania Schools Union Breach

The Pennsylvania State Education Association (PSEA) has sent breach notifications to over 500,000 current and former members Read More

March 20, 2025

Critical GitHub Attack

Rooted Devices 250 Times More Vulnerable to Compromise

Smashing Security podcast #409: Peeping perverts and FBI phone calls

UK CNI Security Leaders Express Confidence in Cybersecurity, Despite 95% Breach Rate

UK Police Arrest 422 in Major Fraud Crackdown

Over Half a Million Hit by Pennsylvania Schools Union Breach

Supply-chain CAPTCHA attack hits over 100 car dealerships

NCSC Sets 2035 Deadline for Post-Quantum Cryptography Migration

Dangers of Data Logging and Data Hashing in Cybersecurity

Critical GitHub Attack

Rooted Devices 250 Times More Vulnerable to Compromise

Smashing Security podcast #409: Peeping perverts and FBI phone calls

UK CNI Security Leaders Express Confidence in Cybersecurity, Despite 95% Breach Rate

UK Police Arrest 422 in Major Fraud Crackdown

Over Half a Million Hit by Pennsylvania Schools Union Breach