The back-to-back Thanksgiving, Black Friday, and Cyber Monday festivities keep everyone busy.
However, the US Cybersecurity and Infrastructure Agency (CISA) and FBI have reminded everyone to protect their Android devices from potential breaches by hackers and Cynos modified Trojan malware infections from anywhere. online transactions.
The CISA and the FBI both issued a warning to critical infrastructure providers before Thanksgiving on Thursday, November 25, advising them to remain vigilant on holidays and weekends because hackers do not take vacations.
In August, ahead of Labor Day weekend, the agency issued a similar warning, stating that ransomware attackers frequently target holidays and weekends, especially when businesses are likely to shut down.
The CISA and the FBI said via ZDNet: “Recent history tells us that this could be a time when these persistent cyber actors halfway around the world are looking for ways, big and small, to disrupt networks and systems. reviews belonging to organizations, companies and critics. Infrastructure.”
The agencies said no specific threats had been discovered.
They did point out, however, that some of the worst ransomware attacks occurred on holidays and weekends, such as July 4 and Mother’s Day weekend.
The agencies have listed six essential steps businesses can take to reduce the risk of attack during the Thanksgiving holiday to prepare for possible strikes.
These precautionary measures include identifying key IT security personnel capable of handling a spike in work following a ransomware attack; implementation of multi-factor authentication for remote access and administrative accounts; enforce strong passwords and avoid password reuse; ensure that RDP is secure and monitored, and remind employees not to click on suspicious links.
Meanwhile, Bleeping Computer reported that approximately 9,300,000 Android devices were infected with Trojans disguised as more than 190 separate applications.
The Alps were installed as part of a large-scale malware campaign on Huawei’s AppGallery.
Dr. Web identified the Trojan as “Android.Cynos.7.origin”, which is a modified variant of the Cynos malware that collects sensitive user data.
The discovery and report was made by researchers at Dr Web AV, who then alerted Huawei and helped them remove the detected apps from their store.
Those who installed the apps on their Android smartphones, on the other hand, will need to remove them manually.
Also Read: Apple Black Friday Sale 2021: 5 Best Gadget Deals You Can Get Today
Threat actors have disguised their malware as simulators, platforms, arcades, RTS strategy and shooting games for Russian, Chinese and international (English) users in Android apps.
Users were unlikely to remove them if they enjoyed the game, as they all provided the claimed functionality.
The list of Cynos malware is far too long to include here.
However, several significant examples that stand out for their widespread use are given below:
快点 躲 起来 (Hurry up and get out of here) – 2,000,000
427,000 cat adventures
Driving school simulator – 142,000
While it is unrealistic to compare your installed programs to the full list of 190 harmful applications, the easiest option is to run an antivirus program that can detect Cynos Trojans and their variants.
The ability of this variant of the Cynos Trojan allows it to perform various harmful operations including spying on SMS and downloading and installing other payloads.
According to Dr. Web’s malware analysis, Android.Cynos.7.origin is one of the versions of the Cynos program module, which can be inserted into Android applications to monetize them and which has been known since at least 2014 .
Related article: Online Holiday Shopping Scams: 6 Ways to Protect Yourself