Trending...
- KIKO NATION TOKEN (Official Release)
- Private Keys Are a Single Point of Failure: Security Advisor Gideon Cohen Warns MPC Technology Is Now the Only Defense for Institutional Custody
- AI Real Estate Company Quietly Building a National Powerhouse: reAlpha Tech Corp. (N A S D A Q: AIRE)
Threat actors exploit consumer trust in legitimate government apps to plant malicious packages
AMSTERDAM - OhioPen -- EclecticIQ, the global provider of cyber threat intelligence (CTI) technology solutions, has teamed up with fraud and cybercrime prevention experts at ThreatFabric to publish the findings of an investigation into instances of threat actors actively pushing malicious Android packages disguised as legitimate contact tracing applications.
Key analysis points by ThreatFabric and EclecticIQ reveal that:
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on Ohio Pen
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on Ohio Pen
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Key analysis points by ThreatFabric and EclecticIQ reveal that:
- Threat actors have been disguising Android packages as legitimate government-backed contact tracing applications for financial gain.
- There is evidence to suggest that actors have used repackaged commodity and open-source malware to lower the investment required in the observed campaigns.
- Third-party port forwarding, and secure tunneling services have probably been used to provide anonymization to command and control (C2) infrastructure.
- The Android packages were probably delivered through links pointing to phishing pages.
The findings of the report suggest that threat actors will almost certainly continue to use commodity and open source-based malware disguised as legitimate contact tracing applications for financial gain. The low barrier to entry provided by these tools and the continued rollout of contact tracing applications by nations, presents continued financial opportunity for cybercriminals into the near future. Malicious actors have shown their willingness to exploit the current pandemic by targeting legitimate contact tracing applications consistently in recent months. Samples analyzed by EclecticIQ and ThreatFabric researchers had an earliest estimated build time of April 12th, 2020 with the latest being June 23rd, 2020.
More on Ohio Pen
- Terizza Forms Strategic Collaboration with UC San Diego to Pioneer Next-Generation Distributed AI Infrastructure
- EnergyStrat Launches Global LNG Risk Outlook 2025–2030
- Strong Revenue Gains, Accelerating Growth, Strategic Hospital Expansion & Uplisting Advancements: Cardiff Lexington Corporation (Stock Symbol: CDIX)
- Holiday Decorations Most Likely to Cause Injuries
- UK Financial Ltd Confirms Official Corporate Structure of the Maya Preferred Project and Its Dual-Class Token System
Peter Ferguson, Cyber Threat Intelligence Specialist at EclecticIQ's Fusion Center commented:
"Users should never download contact tracing android applications from links sent to them or from third party stores. If they are interested in downloading their nation's contact tracing application, they should use the official site or the Google Play Store."
Gaetan van Diemen, General Manager at ThreatFabric commented:
"Threat actors have become very efficient in tricking users into downloading and installing a phenomenal variety of malicious apps on their mobile devices. To avoid fraud and brand or reputation damage, we strongly recommend app developers and online service providers to adapt their security strategy based on the factual evolution of the mobile threat landscape."
Additional Resources:
- Read full report here
About EclecticIQ
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cyber security focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation and threat hunting, as well as incident response efforts. We tightly integrate our solutions with our customers' IT security controls and systems. EclecticIQ operates globally with offices in Europe, the United Kingdom and North America, and via certified value-add partners.
More on Ohio Pen
- Star Wars Headliner Hayden Christensen To Attend FAN EXPO Cleveland, March 13-15, 2026
- CCHR Florida Joins Global Call to Ban Electroshock Treatment, Citing New Evidence of Widespread Patient Harm
- BoxingRx Announces Full Gym Renovation Ahead of New Ownership's One-Year Anniversary
- UK Financial Ltd Announces It's Official Corporate Headquarters In The United Kingdom
- Rigani Press Announces Breakthrough Book for Health IT and Medical Leaders to Forge the Road to Responsible AI
Learn more at www.eclecticiq.com
About ThreatFabric
ThreatFabric helps financial institutions protect their online services, stop fraud and enhance customer experience. Powered by threat intelligence, ThreatFabric's solutions offer a holistic approach to risk detection and fraud prevention. MTI (Mobile Threat Intelligence) provides global visibility and context on the mobile banking threat landscape. It is the threat intelligence solution to use to protect personal data, customers and brand from financially motivated threat actors. It includes the strategic overview of threats and context as well as all relevant technical indicators. CSD (Client Side detection) provides the answer to the constantly-evolving fraud landscape and regulatory challenges. An omnichannel solution that empowers financial institutions to pro-actively detecting known and unknown threats to mitigate fraud and build trust across their online services.
Learn more at www.threatfabric.com
Source: EclecticIQ
0 Comments
Latest on Ohio Pen
- Compliance Is the Ticket to Entry: Legal Advisor Gabriela Moraes Analyzes RWA Securitization Paths Under Brazil's New Legislation
- Coalition and CCHR Call on FDA to Review Electroshock Device and Consider a Ban
- Spark Announces 2025 Design Award Winners
- NEW Luxury Single-Family Homes Coming Soon to Manalapan - Pre-Qualify Today for Priority Appointments
- Dominic Pace Returns to the NCIS Franchise With Guest Role on NCIS: Origins
- Anderson Periodontal Wellness Attends 5th Joint Congress for Ceramic Implantology
- UK Financial Ltd Completes Full Ecosystem Conversion With Three New ERC-3643 SEC-Ready Tokens As MCAT Deadline Closes Tonight
- AI Real Estate Company Quietly Building a National Powerhouse: reAlpha Tech Corp. (N A S D A Q: AIRE)
- Inkdnylon Expands National Uniform Embroidery Services
- Appliance EMT Expands Appliance Repair Services to Portland, OR and Vancouver, WA
- Next Week: The World's Best Young Pianists Arrive in Music City for the 2025 Nashville International Chopin Piano Competition
- Revenue Optics Builds Out Its Dedicated Sales Recruiting Firm with Strategic Addition of Christine Schafer
- Hydrofast Elevates the Holiday Season: The C100 Countertop RO System Merges Smart Tech with Wellness for the Perfect Christmas Gift
- Melospeech Inc. Accepts Nomination for HealthTech Startup of the Year
- Flower City Tattoo Convention Draws Record Attendance in Rochester, NY
- KIKO NATION TOKEN (Official Release)
- Verb™ Presents Features Vanguard Personalized Indexing: Utilizing Advanced Tax-Loss Harvesting Technology
- UK Financial Ltd Announces A Special Board Meeting Today At 4PM: Orders MCAT Lock on CATEX, Adopts ERC-3643 Standard, & Cancels $0.20 MCOIN for $1
- 6 Holiday Looks That Scream "Old Money" But Cost Less Than Your Christmas Tree
- From Cheer to Courtroom: The Hidden Legal Risks in Your Holiday Eggnog