ReferralHype’s Post

Telegram Zero-Day Exploit Delivers Malware via Fake Videos A vulnerability in Telegram for Android has been exploited to distribute malware disguised as video files, warns cybersecurity firm ESET. The exploit, dubbed EvilVideo, allowed attackers to use the Telegram API to upload malicious multimedia files that appeared as videos in Telegram chats. By default, Telegram automatically downloads multimedia files, making it easy for the malware to reach users' devices. When users attempted to play the video, they were prompted to install a fake video player, which was actually a malicious application. The vulnerability affected Telegram for Android versions 10.14.4 and earlier, but a patch has been released. Users are advised to update to version 10.14.5 to stay protected. Read the article ➡️ https://lnkd.in/gqSPN7yd #Cybersecurity #Telegram #Malware #ZeroDayExploit #AndroidSecurity

The exploit enables hackers to distribute dangerous files disguised as innocent 30-second videos. These files can be sent through Telegram channels, groups, or private chats. Typically, when users receive videos on Telegram, they are automatically downloaded, provided the setting is enabled. As a result, the harmful file gets downloaded as soon as the recipient opens the chat. #CyberSecurity #TelegramSecurity #SocialMediaCrime #DigitalSafety #EncryptedMessaging #PrivacyConcerns #Telegram

Fake web browser updates are being used to deliver remote access trojans (RATs) and information stealer malware such as BitRAT and Lumma Stealer (aka LummaC2). https://lnkd.in/ehwviHcM #webbrowser #update #malware #BitRat #Lummac2 #cybersecuritynews #threatresq

🚨ESET researchers have uncovered a critical zero-day vulnerability in the Telegram messaging app for Android, potentially putting millions at risk. This exploit, known as “EvilVideo,” uses malicious video files to distribute harmful payloads. ⚠️ How Does the Exploit Work? - Deceptive Video: Appears as a 30-second video. - Error Message: Prompts the use of an external player. - Malicious App: Installs a harmful app disguised as an external player. - Automatic Download: Exploits Telegram’s default media download setting to spread the payload. 🔧 Action Taken: - ESET reported the issue to Telegram on June 26 and July 4, 2024. - Telegram released a patch in version 10.14.5 on July 11, 2024, closing the vulnerability. #CyberSecurity #Telegram #ZeroDay #EvilVideo #StaySafe #UpdateNow

Being safe online is crucial in today's digital landscape. Hackers often exploit our trust in everyday practices to gain access to our sensitive information. It's essential to stay vigilant and think twice before entering login credentials, especially when prompted unexpectedly. This article sheds light on the latest tactics cybercriminals are using to steal Gmail accounts. Stay informed and protect your online security. [Read more here:](https://lnkd.in/geSwxZUf)

🚨 Beware of "Poseidon" Malware on MacOS A new MacOS malware, "Poseidon," is spreading via fake Google Ads, targeting user credentials and VPN configurations. Stay vigilant when downloading apps and only use trusted sources. #CyberSecurity #MacOS #PoseidonMalware #DataProtection #TechNews #InfoSec #MalwareAlert #StaySafeOnline #CyberThreats #Malwarebytes

Hackers Are Using Clever Techniques To Trick Windows Users Into Opening Malicious Websites As a savvy business owner and Microsoft Windows user, you always update your browser and only visit secure websites. But do your employees exercise the same level of caution? If not, your data could be at serious risk. This is especially true now that hackers are using clever techniques to trick Windows users into opening malicious websites in unique ways. What Is Malware and How Does It Usually Spread? Find out here. https://lnkd.in/e7eENGtV

🚨 WARNING: New Vo1d Malware Hits 1.3 Million Android TV Boxes Worldwide. 📺A new malware named Vo1d (aka Void) has infected nearly 1.3 million Android-based TV boxes in 197 countries! 🦠 What does Vo1d do? Vo1d is a backdoor that hides in the system storage, allowing attackers to secretly download and install third-party software. It disguises itself using a system-like name to avoid detection and persistently runs in the background. 🔒 Protect Yourself! These infected devices are not Play Protect certified, meaning they haven't undergone Google's security checks. To stay safe, make sure your device is Play Protect certified by visiting Google’s Android TV website or checking your device settings. #CyberSecurity #MalwareAlert #AndroidTV #Vo1d

For all you Android users out there this Promon report on Snowblind details a new Android malware variant designed to exploit vulnerabilities in applications. This malware is capable of stealing sensitive user data, including login credentials and financial information. #CyberSecurity #AndroidMalware #DataProtection #AppSecurity #MobileThreats #CyberThreats #Infosec #MalwareAlert #TechSecurity #DigitalSafety https://lnkd.in/ecxYzaUY

Mandrake Android Spyware Returns, Targeting Over 32,000 Users A new variant of the Mandrake Android spyware has been discovered, evading detection for two years while infecting over 32,000 users. The malware, hidden within seemingly legitimate apps available on the Google Play Store, poses a significant threat to user privacy and security. Mandrake's Evolution First identified in 2020, Mandrake has undergone significant refinements. The latest version incorporates advanced obfuscation techniques, making it harder to detect and analyze. It also leverages sophisticated evasion tactics to bypass security measures on Android devices. How Mandrake Operates The malware is delivered through seemingly benign apps available on the Google Play Store. Once installed, Mandrake initiates a multi-stage infection process: Read More: https://lnkd.in/dhTNAJua #MandrakeSpyware #Canada #CanadaCyberAwareness #CyberSecurity #AndroidSecurity #CyberThreat #MobilePrivacy #StaySecure