Spyware posing as VPN apps – Week in security with Tony Anscombe

Cyber Security

The Bahamut APT group distributes at least eight malicious apps that pilfer victims’ data and monitor their messages and conversations

This week, ESET researchers published their analysis of a malicious campaign where the Bahamut APT group targets Android users via trojanized versions of two legitimate VPN apps – SoftVPN and OpenVPN. Since January 2022, Bahamut has distributed at least eight malicious apps in order to pilfer sensitive user data and actively spy on victims’ messaging apps. These apps were never available for download from Google Play; instead, they were distributed through a fake SecureVPN website.

Watch the video to learn more.

Full technical details are available here: Bahamut cybermercenary group targets Android users with fake VPN apps

Products You May Like

Articles You May Like

S3 Ep119: Breaches, patches, leaks and tweaks! [Audio + Text]
GitHub code-signing certificates stolen (but will be revoked this week)
QNAP Fixes Critical Vulnerability in NAS Devices with Latest Security Updates
Password-stealing “vulnerability” reported in KeePass – bug or feature?
Killnet Attackers DDoS US and Dutch Hospitals

Leave a Reply

Your email address will not be published. Required fields are marked *