Triada Malware

New research into the impact of Triada, a sophisticated remote access Trojan that was recently found pre-installed on numerous Android devices, has shown that more than 15% of telecom companies globally have infected devices running on their network.

Initially at least, the malware’s purpose was to install apps for displaying ads on an infected device for ad fraud purposes. But Triada is modular and can be easily repurposed for other malicious purposes, the vendors have warned. The only way to get rid of it from systems on which it is pre-installed is to upgrade the firmware.

Source: DarkReading

How do you protect yourself?

Proper security measures must be in place to defend against Triada Malware and similar threats. Ensure your systems have the latest patches installed. Having proper up-to-date endpoint security provides a cross-generational blend of threat defense techniques to protect systems from malware.

CVE-2019-8670

Apple has released security patch updates for Safari.

An inconsistent user interface issue was addressed with improved state management. Visiting a malicious website may lead to address bar spoofing.

Source: Apple

How do you protect yourself?

Update to Safari 12.1.2.

Monokle Malware

A never-before-publicized mobile spy tool, a mobile surveillanceware remote access trojan (RAT) for Android called Monokle, has been spotted using novel techniques to exfiltrate data.

According to the Lookout researchers who discovered Monokle in the wild, the malware has the ability to self-sign trusted certificates to intercept encrypted SSL traffic. It can also record a phone’s lockscreen activity in order to obtain passcodes, and it can leverage accessibility services to gain access to third-party apps.

Source: ThreatPost

How do you protect yourself?

Proper security measures must be in place to defend against Monokle malware and similar threats. Ensure your systems have the latest patches installed. Backing up your data and having proper up-to-date endpoint security provides a cross-generational blend of threat defense techniques to protect systems from malware.