Tag: play | Page 4

Tag Archive for: play

‘Play’ Ransomware Group Targeting MSPs Worldwide in New Campaign

August 17, 2023/in Internet Security

The fast-rising Play ransomware group that targeted the City of Oakland earlier this year is now hitting managed service providers (MSPs) around the globe in a cyberattack campaign to distribute ransomware to their downstream customers.

One troublesome aspect of the campaign is the threat actor’s use of intermittent encryption — where only parts of a file are encrypted — to try and evade detection.

Wide Range of Victims

Play’s targets appear to be midsized businesses in the finance, legal, software, shipping, law enforcement, and logistics sectors in the US, Australia, UK, Italy, and other countries, Adlumin said in a report this week. Researchers at Adlumin who are tracking the campaign as PlayCrypt say the attacker is also targeting state, local, and tribal entities in these countries as well.

As with other attacks involving MSPs, the Play or PlayCrypt group breaks into MSP systems and uses their remote monitoring and management (RMM) tools to get unfettered access to the networks and systems of customers of the MSPs. It is a tactic that other threat actors have used with substantial impact. The most notable example remains the REvil ransomware group’s attack on multiple MSP via vulnerabilities in Kaseya’s Virtual System Administrator (VSA) network monitoring tool. The attack resulted in the encryption of data on the systems of more than 1,000 customers of these MSPs.

Kevin O’Connor, director of threat research at Adlumin, says his company’s research shows the threat actors gain access to privileged management systems and RMM tools via a phishing campaign that targets employees at MSPs. “[This] leads to compromise of their systems and access either through direct exploitation or credential harvesting and reuse” he says.

Many Exploits, Including via Microsoft Exchange

Once the Play actors gain access to a customer environment — via the victim’s MSP — they move quickly to deploy additional exploits and broaden their foothold, Adlumin said in a report this week. In some cases, they have exploited vulnerabilities in Microsoft Exchange Server. Examples include CVE-2022-41040, a privilege escalation bug that attackers were exploiting before Microsoft had a fix for it and

Source…

How to Play the Five Nights at Freddy’s Games in Chronological Order

June 26, 2023/in Mobile Security

With Blumhouse’s new Five Nights at Freddy’s film releasing this year on October 27, there’s no better time than now to play through the Five Nights at Freddy’s games. Created by Scott Cawthon, the first game launched back in 2014 and has since garnered an incredible fan base and followed up its horror hit with a wide variety of games; from mainline installments to plenty of spinoffs.

For those interested in taking on the night shift against these killer animatronics, we’ve detailed how to play each of the mainline FNAF games in both chronological and release date order below.

Jump to:

How Many Five Nights at Freddy’s Games Are There?

When it comes to the main FNAF games, there are 9 in total, which we’ve covered below. As far as spin-offs and more challenge-based games go, though, there are 4 additional FNAF games that fall in this category. These are Five Nights at Freddy’s World, Freddy in Space 2, Security Breach: Fury’s Rage, and Ultimate Custom Night.

Five Nights at Freddy’s Games in Chronological Order

For those looking to play through the Five Nights at Freddy’s games in chronological order to get the full story, we’ve done our best to arrange them in story order. If you have different theories about this franchise’s order, though, share them in the comments!

1. Five Nights at Freddy’s 4 (2015)

Available on: Android/IOS, Nintendo Switch, PC, PlayStation 4, Xbox One

When working through the timeline of Five Nights at Freddy’s, the game to start out with is actually Five Nights at Freddy’s 4, as it takes place in 1983. This is assumed because of an easter egg during one of the post-Night minigames that can be seen by interacting with a TV in the living room. After hitting it enough times, it’ll eventually bring up a still for a commercial for a show called Fredbear and Friends, which appears to have aired in 1983, given that’s the date beneath the title.

Compared to its predecessors, though, FNAF 4 has a different setting. This time, you play as a young child in their bedroom rather than as a security guard in an office. Throughout the night, you’ll need to run from your bedroom doors to your closet (and even…

Source…

Android users urged to delete these 19 Google Play Store apps infected with money-sucking malware

April 30, 2023/in Computer Security

Millions of Android users are being warned to check their phone for a string of apps which have been hijacked my malicious viruses.

There are three main viruses currently using 19 apps to steal sensitive information and secretly sign up users to premium services, monetising the infection.

One of the malware strains has already been downloaded more than three million times.

Watch the latest News on Channel 7 or stream for free on 7plus >>

Because Android is an open source operating system, it can run any third-party app, unlike iOS.

While this makes devices more customisable, it also leaves them open to harmful cyber attacks, with malware commonly hidden in the coding of seemingly harmless apps.

According to the experts at MalwareFox, cyber criminals download real apps from the Google Play Store, and inject malicious viruses into the backend coding of those programs, before re-uploading them to the store under a new name.

Malware is always adapting and finding new ways to invade devices, but cybersecurity experts are always on the hunt for them.

Here are the viruses currently doing the rounds, and the apps they are hiding in, according to MalwareFox.

Joker Spyware

This spyware gathers sensitive data like contact lists and SMS messages, and can register the device for premium services without consent.

It is hiding in the following apps:

Simple Note Scanner – com.wuwan.pdfscan
Universal PDF Scanner – com.unpdf.scan.read.docscanuniver
Private Messenger – com.recollect.linkus
Premium SMS – com.premium.put.trustsms
Blood Pressure Checker – com.bloodpressurechecker.tangjiang
Cool Keyboard – com.colate.gthemekeyboard
Paint Art
Color Message.

Harly Trojan

This Trojan uses China Telecom’s code — 46011, according to Malware experts at Kaspersky, which say it gives clues to suggest the malware developers are located in China.

It can also subscribe users to premium services in an invisible window to monetise the infection.

It is hiding in the following apps:

Fare Gamehub and Box
Hope Camera-Picture Record
Same Launcher and Live Wallpaper
Amazing Wallpaper
Cool Emoji Editor and Sticker

Autolycos Malware

This malware has already been downloaded more than three million times, according to PCrisk.

It also…

Source…

Attackers can buy evil Play apps for as little as $3000 – Security

April 11, 2023/in Computer Security

Thrifty bad actors could pay as little as US$2000 ($3000) to get a malicious app into the Google Play store, according to Kaspersky researchers, but prices also range as high as $US20,000.

In research published at Securelist, the researchers analysed offers of Google Play threats for sale between 2019 and 2023, and found that the most popular app categories to hide malware were cryptocurrency trackers, financial apps, QR code scanners and dating apps.

The researchers price-benchmarked a variety of criminal services on offer: as well as pushing malware onto users’ Android devices, they looked at the cost of malware obfuscation, and advertising.

Between the two extremes, Kaspersky wrote, the average price for a compromised Google Play loader – which injects malicious code into a target app, which replaces the original on Play – is US$6975.

“However, if cyber criminals want to buy the loader source code, the price immediately rockets, reaching the upper limit of the price range,” the researchers added.

The researchers said that the criminals “most frequently … promise to inject code into an app with 5000 downloads or more.”

Binding services, another popular delivery mechanism, insert malicious code in an app, but rather than distributing it through Play, attackers push the app at victims via phishing text or “dubious websites with cracked games and software”.

These services, Kaspersky said, “usually cost about US$50 to US$100, or US$65 per file” for a successful installation.

Malware obfuscation helps malicious apps get past Google Play’s checks, and Kaspersky found it is offered per application, “or for a subscription, for example, once per month.”

The advantage of subscriptions is the same as in the legal world, the researchers wrote:
“One of the sellers offers obfuscation of 50 files for US$440, while the cost of processing only one file by the same provider is about US$30.”

Advertising to get users to pick up the compromised apps varies greatly: “The average price is US$0.50, with offers ranging from US$0.10 to US$1.”

Source…