Tag Archive for: Activity

Expert Warns of Growing Android Malware Activity


Kaspersky has unveiled its annual analysis of the mobile threat landscape, revealing a striking 52% surge in attacks on mobile devices in 2023 compared to the previous year. Presented at the Mobile World Congress in Barcelona, the report underscores the escalating risks facing mobile users globally.

According to the report, the number of mobile attacks soared to nearly 33.8 million in 2023, marking a significant increase from the previous year’s figures. Among the several threats detected, adware emerged as the most prevalent, constituting 40.8% of all identified threats. Notably, the UK experienced 258,929 mobile attacks during the same period.

While there was a decline in the number of banking Trojan installation packages, attacks using mobile bankers remained steady. In particular, Kaspersky uncovered over 1.3 million malicious installation packages, with 154,000 of these containing a mobile banking Trojan. 

According to Kaspersky, cybercriminals are employing diverse tactics to distribute mobile threats, infiltrating both official and unofficial app stores. Malicious applications were observed infiltrating Google Play, with fake investment apps being a common disguise. Additionally, malicious WhatsApp and Telegram mods aimed at stealing user data were identified as prevalent attack vectors.

Read more on these threats: Spy Module Discovered in WhatsApp Mods

“The surge in Android malware and riskware activity throughout 2023 marks a concerning shift after a period of relative calm,” commented Anton Kivva, mobile security expert at Kaspersky.

“Reaching levels reminiscent of early 2021 by year-end, this uptick underscores the significant threat users face. It’s a stark reminder of the importance of remaining vigilant and implementing robust security measures to protect against evolving cyber-threats.”

To mitigate these threats, Kaspersky offered several recommendations, including downloading apps only from official stores, scrutinizing app permissions, utilizing reliable security solutions and regularly updating operating systems and essential apps.

Source…

Researchers Uncover Major Surge in Global Botnet Activity


Security researchers have discovered a significant increase in global botnet activity between December 2023 and the first week of January 2024, with spikes observed exceeding one million devices.

Writing in an advisory published on Friday, Netscout ASERT explained that, on a typical day, approximately 10,000 such devices engaged in malicious reconnaissance scanning last year, with a high watermark of 20,000 devices. 

However, on December 8 2023, this number surged to 35,144 devices, signaling a notable departure from the norm.

According to the technical write-up, the situation escalated on December 20, with another spike reaching 43,194 distinct devices. Subsequent spikes, occurring in shorter intervals, culminated in a record-breaking surge on December 29, involving a staggering 143,957 devices, nearly ten times the usual levels. 

Disturbingly, this heightened activity persisted, with high watermarks fluctuating between 50,000 and 100,000 devices.

As the new year unfolded, the scale of the threat became even more pronounced, with January 5 and 6 witnessing spikes exceeding one million distinct devices each day – 1,294,416 and 1,134,999, respectively. A subsequent spike of 192,916 on January 8 affirmed the sustained intensity of this cyber onslaught.

Read more on botnets: Zyxel Vulnerability Exploited by DDoS Botnets on Linux Systems

Further analysis revealed that this surge emanated from five key countries: the United States, China, Vietnam, Taiwan and Russia. 

“Analysis of the activity has uncovered a rise in the use of cheap or free cloud and hosting servers that attackers are using to create botnet launch pads,” Netscout wrote. “These servers are used via trials, free accounts or low-cost accounts, which provide anonymity and minimal overhead to maintain.”

Adversaries utilizing these new botnets focused on scanning global internet ports, particularly ports 80, 443, 3389, 5060, 6881, 8000, 8080, 8081, 808 and 8888. Additionally, signs of potential email server exploits surfaced through increased scanning of ports 636, 993 and 6002.

“These consistently elevated levels indicate a new weaponization of the cloud against the global internet,” reads the…

Source…

An Analysis of Insider Activity and …


Thomas Seifert, the Chief Financial Officer of Cloudflare Inc (NYSE:NET), has recently sold a significant number of shares in the company. On December 13, 2023, the insider executed a sale of 34,329 shares. This transaction has caught the attention of investors and market analysts, as insider trading activity, particularly from high-ranking executives, can provide valuable insights into a company’s financial health and future prospects.

Who is Thomas Seifert?

Thomas Seifert is a seasoned executive with a wealth of experience in the technology sector. As the CFO of Cloudflare Inc, Seifert is responsible for the company’s financial strategy, including accounting, financial planning and analysis, treasury, tax, and investor relations. His role is crucial in guiding the company through its financial operations and ensuring that Cloudflare remains on a path of sustainable growth. Seifert’s background includes various leadership positions in finance and operations, making him a key figure in Cloudflare’s executive team.

Cloudflare Inc’s Business Description

Cloudflare Inc is a global company that provides a broad range of services to help secure and accelerate Internet applications. The company’s cloud platform functions as a reverse proxy, offering content delivery network (CDN) services, DDoS mitigation, Internet security, and distributed domain name server services. Cloudflare’s solutions are designed to enhance the performance and security of websites, APIs, SaaS services, and other properties connected to the Internet. With a focus on reliability and security, Cloudflare has become a trusted partner for businesses looking to protect their online presence and improve user experience.

Analysis of Insider Buy/Sell and Relationship with Stock Price

Insider trading activity, such as the recent sale by Thomas Seifert, can be a powerful indicator of a company’s internal perspective on its stock’s value. Over the past year, Seifert has sold a total of 495,911 shares and has not made any purchases. This one-sided activity may raise questions among investors about the insider’s confidence in the company’s future performance.

When analyzing insider trends, it’s important to consider…

Source…