Stealthy new Android malware poses as ad blocker, serves up ads instead
Since its discovery less than a month ago, a new Trojan malware for Android we detect as Android/Trojan.FakeAdsBlock has already been seen on over 500 devices, and itβs on the rise. This nasty piece of mobile malware cleverly hides itself on Android devices while serving up a host of advertisements: full-page ads, ads delivered when opening the default browser, ads in the notifications, and even ads via home screen widget. All while, ironically, posing as an ad blocker vaguely named Ads Blocker.
https://blog.malwarebytes.com/android/2019/11/stealthy-new-android-malware-poses-as-ad-blocker-serves-up-ads-instead/
#google #playprotect #adblocker
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
Since its discovery less than a month ago, a new Trojan malware for Android we detect as Android/Trojan.FakeAdsBlock has already been seen on over 500 devices, and itβs on the rise. This nasty piece of mobile malware cleverly hides itself on Android devices while serving up a host of advertisements: full-page ads, ads delivered when opening the default browser, ads in the notifications, and even ads via home screen widget. All while, ironically, posing as an ad blocker vaguely named Ads Blocker.
https://blog.malwarebytes.com/android/2019/11/stealthy-new-android-malware-poses-as-ad-blocker-serves-up-ads-instead/
#google #playprotect #adblocker
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
Forwarded from BlackBox (Security) Archiv
List of compromised websites and scope of damage, by Nano Adblocker and Defender
So far from vungsung's comment, we learned that some session cookies of Nano Adblocker and Defender are stolen
Users need to logout ALL sessions of a website and login again to refresh session cookies
Changing passwords can force refresh session cookies
For further investigation by tweedge of this incident, go to #5 (comment)
Please go to #4 for rant and #3 or #2 for other issues
You may have one or more or none accounts affected depending on your luck
βΌοΈ Websites already confirmed to be compromised βΌοΈ
π Instagram
βΌοΈ Websites that may be compromised, needs confirmation βΌοΈ
π Github
π Microsoft account
π Twitch
π ππΌ https://github.com/jspenguin2017/Snippets/issues/5
π‘ Read as well: Nano Adblocker & Nano Defender was sold and should now be considered malware.
https://t.me/BlackBox_Archiv/1440
#adblocker #extensions #addons #malware #compromised
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@BlackBox_Archiv
π‘@NoGoolag
So far from vungsung's comment, we learned that some session cookies of Nano Adblocker and Defender are stolen
Users need to logout ALL sessions of a website and login again to refresh session cookies
Changing passwords can force refresh session cookies
For further investigation by tweedge of this incident, go to #5 (comment)
Please go to #4 for rant and #3 or #2 for other issues
You may have one or more or none accounts affected depending on your luck
βΌοΈ Websites already confirmed to be compromised βΌοΈ
π Instagram
βΌοΈ Websites that may be compromised, needs confirmation βΌοΈ
π Github
π Microsoft account
π Twitch
π ππΌ https://github.com/jspenguin2017/Snippets/issues/5
π‘ Read as well: Nano Adblocker & Nano Defender was sold and should now be considered malware.
https://t.me/BlackBox_Archiv/1440
#adblocker #extensions #addons #malware #compromised
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@BlackBox_Archiv
π‘@NoGoolag
GitHub
Thanks for helping new devs to selling data. Β· Issue #4 Β· jspenguin2017/Snippets
Our all cookies and sessions copied because of you