Android devices targeted in Xamalicious backdoor campaign

28 December 2023

More than 327,000 Android devices have been compromised by the novel Xamalicious malware, most of which are in Brazil, the UK, Australia, the U.S., and Mexico, The Hacker News reports. Twenty-five health, gaming, productivity, and horoscope apps, some of which have been on the Google Play Store since mid-2020, have been used to distribute Xamalicious, which leverages Android accessibility permissions to exfiltrate system metadata and deploy a first-stage dropper enabling primary APK updating and a second-stage payload that could facilitate device takeovers and further malicious actions, a report from the McAfee Mobile Research Team revealed.

Source: SC Magazine

Date:

28 December 2023

Categorie(s):

NEWS

Tag(s):

Android devices, IT, Malware, News

How Amazon Security Lake is helping customers simplify security data management for proactive threat analysis7 May 2024
Detect and Destroy Cyber Threats with Red Piranha7 May 2024
Grant Shapps says it will ‘take some time’ to conclude who was to blame for cyber-attack on armed forces payroll – UK politics live7 May 2024
#RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds7 May 2024
Grant Shapps gives update to MPs about cyber-attack on database containing details of armed forces personnel – UK politics live7 May 2024