1. Forum
  2. tqw
  3. TQW GENTECH

  • Hackers are spreading QR code malware through...the post?

    From TechnologyDaily@1337:1/100 to All on Monday, November 18, 2024 12:00:06
    Hackers are spreading QR code malware through...the post?

    Date:
    Mon, 18 Nov 2024 11:45:04 +0000

    Description:
    Infostealing malware app spread via posted QR codes, and it has access to
    more than 380 Android apps.

    FULL STORY ======================================================================Swiss citizens warned about fake Alertswiss app Malicious app deploys a variant of the Coper trojan Keystrokes, 2FA codes and credentials are at risk

    The Swiss National Cyber Security Centre (NCSC) is warning the public about a recent malware campaign targeting citizens via the countrys postal service.

    Residents are reportedly receiving letters through the post from what they believe to be the Federal Office of Meteorology and Climatology, urging them to install a fraudulent weather app.

    The letters include a QR code to facilitate with the download of the Android-based Severe Weather Warning App, which masquerades as the nations Alertswiss app. Swiss citizens targeted by QR code malware

    Using QR codes to spread malware isnt new, however attack vectors can vary widely. When accessing online content, users should always be cautious of telltale signs that suggest the content theyre accessing is not legitimate.

    In this case, the malicious app is labelled AlertSwiss, whereas the genuine app is labelled Alertswiss. It also has a slightly different icon. Furthermore, the app is distributed via a third-party website, rather than Googles own Play Store, which is another key red flag.

    Upon installation, the app deploys a Coper trojan variant that logs keystrokes, intercepts two-factor authentication messages and steals banking credentials by targeting apps installed on the victims device. According to the public warning, it has access to more than 383 smartphone apps.

    The app also communicates with command-and-control servers, and can present phishing screens to obtain sensitive information from the victims.

    The NCSC said that this was the first time that malware had been delivered through physical mail in the country: The letters look official with the correct logo of the Federal Office for Meteorology and thus trustworthy.

    Citizens targeted by the letter are being urged to report it to the NCSC. Those who have already downloaded the app should reset their phones to
    factory settings.

    Via The Register You might also like Weve listed the best Android antivirus apps These are the best privacy apps for Android This devious new malware is going after macOS users with a whole barrel of tricks



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/hackers-are-spreading-qr-code-malware-t hrough-the-post


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)