HookBot Malware Use Overlay Attacks Impersonate As Popular Brands To Steal Data

6 November 2024

The HookBot malware family employs overlay attacks to trick users into revealing sensitive information by impersonating various brands and apps to gain trust. It also utilizes C2 servers to receive updates and evolve continuously. A builder tool empowers threat actors to create custom HookBot apps as the malware is often distributed through Telegram, where it’s sold at varying prices, indicating a competitive market for such tools. HookBot, a mobile banking Trojan, infiltrates Android devices by masquerading as legitimate apps, which, sourced from unofficial channels or bypassing Google Play store security, establish covert communication with a C2 server. App overlay mimicking Airbnb login screen.

Source: GBHackers

Date:

6 November 2024

Categorie(s):

NEWS

Tag(s):

Attacks, Brands, Cyber Crime, Cyber Security News, Data

Banks and social media companies to be fined over scams under new Australian laws touted as ‘strongest in world’6 November 2024
6 Steps on How to Become a Cybersecurity Analyst6 November 2024
What Telegram’s recent policy shift means for cyber crime6 November 2024
Fortanix and Versasec partner to enhance cryptographic security for regulated industries6 November 2024
Atakama introduces DNS filtering designed for MSPs6 November 2024