Posts

Minecraft Modpacks Carrying Malware Returned to the Play Store Under New Names| TechNadu


  • The authors of adware-ridden Minecraft modpack apps have found a way into the Play Store again.
  • The apps now use an extra module that adds more functions like opening app pages or YouTube videos.
  • Keeping malware outside the Play Store is practically impossible, so users are advised to pick their apps carefully.

Back in November 2020, Kaspersky discovered several fake Minecraft “modpack” apps on the Play Store, which had the sole purpose of infecting unsuspecting users with adware. After the apps were reported to Google and quickly removed, their authors had to return to the drawing board, and according to Kaspersky’s latest report, they did. The malware-ridden apps have returned on the Google Play Store, albeit under new names and themes, and also with some additional hiding tricks under their sleeve.

More specifically, Kaspersky decided to look at the currently available Minecraft modpack apps again and was not surprised to find that many of them were again adware. The addition this time comes in the form of an extra module fetched by the apps after installation, enabling them to carry out more functions. These include hiding their icons, run the browser, play YouTube videos, open Google Play app pages, and more.

Of course, the apps download this module after their installation to evade review-stage rejections and also to secure the granting of risky permissions from the user. As such, this is yet another reminder to pay attention to what is requested from you on the permissions prompt and not just approve anything that is thrown at you.

Source: Kaspersky

In addition to the Minecraft mods, which appears to be a pretty risky category, Kaspersky mentions an app named “File Recovery – Recover Deleted Files” v1.1.0, which carries the same adware. The app has been available on the Play Store until late February 2021, so there’s a good chance that a significant number of Android devices still have it. After its removal at that point, the developers uploaded a clean version, number 1.1.1, which isn’t dangerous to use.

More recent examples come in the form of fake Madgicx and fake TikTok ad-management apps, which are basically just phishing Facebook accounts…

Source…

52% of ransomware victims pay the ransom, but only 15% see their data returned


April 04, 2021: More than half (52%) of ransomware victims paid the ransom to restore access to their data last year, according to a global study of 15,000 consumers conducted by global security company Kaspersky. Yet for 15% of those, paying the ransom did not guarantee the return of stolen data. However, as public awareness of potential cyber threats grows there is reason for optimism in the fight against ransomware.

Ransomware is a type of malware which criminals use to extort money. It holds data to ransom using encryption or by locking users out of their device. Kaspersky’s report, ‘Consumer appetite versus action: The state of data privacy amid growing digital dependency’, found that, for more than quarter of respondents (28%), the estimated money loss was less than $100, for (15%)  – $100 – $249 for 43% it ranged from $250 to $1999, but for 3% totals reached between $2,000 and $4,999.

Whether they paid or not, only 17% of victims were able to restore all their encrypted or blocked files following an attack. More than half (62%) lost at least some files, (34%) lost a significant amount, and 18% lost a small number of files. Meanwhile, 13% who did experience such an incident lost almost all their data.

“This data shows we have seen a significant proportion of consumers paying a ransom for their data over the past 12 months. But handing over money doesn’t guarantee the return of data, and only encourages cybercriminals to continue the practice. Therefore, we always recommend that those affected by ransomware do not pay as that money supports this scheme to thrive”, comments Marina Titova, Head of Consumer Product Marketing at Kaspersky. “Instead consumers should make sure to invest in initial protection and security for their devices and regularly back up all data. This will make the attack itself less appealing or lucrative to cybercriminals, reducing the use of the practice, and presenting a safer future for web users”.

At present, around four-in-10 (47%)  of those surveyed claimed they were aware of ransomware over the past 12 months. It’s important that this number rises as remote working becomes more prolific. To better…

Source…

A cybersecurity fund has returned more than 30 percent since the Equifax data breach

  1. A cybersecurity fund has returned more than 30 percent since the Equifax data breach  CNBC
  2. 9 data breach lawsuits that made headlines  KnowTechie
  3. Full coverage

data breach – read more