New Android Trojan 'Herodotus' steals 2FA codes, logins, PINs

zLabs Identifies “Fantasy Hub,” A Powerful Android RAT Sold As MaaS 🏦 Our #zLabs researchers uncovered Fantasy Hub, an Android Remote Access Trojan distributed through a Malware-as-a-Service subscription model. Designed to steal banking credentials, intercept SMS, and exfiltrate images and videos, this threat highlights how easily attackers can weaponize mobile devices. Read the full analysis → https://okt.to/SmoT3f

🚨 New Threat Alert: “Fantasy Hub” Android RAT-for-Rent 🚨 A new Android malware-as-a-service (MaaS) called Fantasy Hub is turning ordinary phones into full surveillance devices. Once installed, it can: 📩 Intercept SMS (including 2FA codes) 📸 Steal photos, videos, and contacts 🎥 Stream live audio and video from your camera/mic 🏦 Display fake banking overlays to steal credentials Why it matters: Fantasy Hub lowers the barrier for cybercriminals — anyone can rent it and launch attacks. It’s a wake-up call for IT teams and users alike: mobile devices are now prime targets Read More → https://lnkd.in/g3NiEZp2

Identifying Pegasus 2022: A Specific IOC For those still on iOS versions prior to 26, a specific IOC for Pegasus 2022 infections involved the presence of a /private/var/db/com.apple.xpc.roleaccountd.staging/com.apple.WebKit.Networking entry within the shutdown.log. This particular IOC also revealed a significant shift in NSO Group's tactics: they began using normal system process names instead of easily identifiable, similarly named processes, making detection more challenging.

Digital IDs = surveillance trap. They link your identity to every click, enabling control like China’s social credit bans. Australia’s ID Act is going mandatory. Resist now—use encryption, ditch ID-hungry apps. More here: https://lnkd.in/gnvxfenD

New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without PermissionsAndroid devices from Google and Samsung have been found vulnerable to a side-channel attack that could be exploited to covertly steal two-factor authentication

New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without PermissionsAndroid devices from Google and Samsung have been found vulnerable to a side-channel attack that could be exploited to covertly steal two-factor authentication

⚠️ Browser fingerprinting is dying, and so is its reliability for detecting survey fraud. 🦊 Firefox's latest update slashes the number of users that appear unique by ~50%, thanks to new fingerprinting protections that hide details like fonts, CPU cores, screen size, and rendering quirks. Read their blog here https://lnkd.in/e-sq29YT 💡 For survey researchers, this means one thing: fingerprints are no longer dependable for catching duplicates or bots. 🔐 As browsers tighten privacy, detection must evolve, away from static device characteristics and toward multi-layered defenses that adapt in real time. This is exactly what we are building at ResponsePie. Follow us to learn more. #SurveyFraud #DataQuality #SurveyResearch

Firefox 145 boosts fingerprinting defenses by limiting hardware and system data collection, cutting unique user tracking nearly in half. Enhanced privacy without impacting browsing performance. #FirefoxUpdate #PrivacyTech #Mozilla link: https://ift.tt/egxuACD

🚨 Think you can spot a phone scam? Think again! 🚨Phone scammers are getting smarter—but so can you. This #CyberSecurityAwarenessMonth, we’re sharing our top tips to help you recognize and block scam calls before they trick you. 📞 Check out our video and arm yourself with the knowledge to stay safe! https://bit.ly/4o4ctSe

From IMEI to MediaDrm, Android’s identifiers have shifted from stable hardware values to scoped and resettable constructs that can be easily spoofed. For years, developers relied on them to anchor analytics, fraud prevention, and trust. Today, frameworks like LSPosed can intercept and rewrite those identities in memory, breaking the assumption of persistence. This change has far-reaching implications for anyone building security, risk, or compliance systems on Android. We have detailed this evolution, the technical mechanisms behind it, and what it means for developers in my latest post: 👉 Read More: “From IMEI to MediaDrm: The Evolution and Breakdown of Android Device Identifiers” https://lnkd.in/gQWXxhwC