Skip to main content
Customer Support Customer Support

Latest version of Svpeng targets users in US

Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54
Roman Unuchek  June 11, 11:00  GMT                                                                                   


 Almost a year ago, we wrote our first blog about the mobile Trojan Svpeng. Back then, the first impression was that it was a standard Trojan-SMS class malicious program that stole money from SMS banking accounts.
Later we discovered that the cybercriminals had perfected the Trojan’s functionality and it had begun attacking mobile banking users, in particular, customers of three of Russia’s biggest banks. Svpeng would wait until the user opened an online banking app and then replace it with its own in an attempt to obtain the victim’s login and password. The Trojan also attempted to steal bank card details by displaying its own window on top of the Google Play app and requesting the information the criminals wanted.
 
Full Article

    4 replies

    Jasper_The_Rasper
    Moderator
    Forum|alt.badge.img+54
    by Penny Crosman JUN 13, 2014 Is mobile banking safe? It's a question that's been in the back of many people's minds ever since banks introduced apps in 2009. With roughly 102 million Americans using mobile banking, the potential for hackers, phishers and other types of cyberattackers to prey on mobile banking users is vast.
    But until last week, no major security event had directly threatened mobile banking users.
     
    Full Article
    R
    Community Guide
    By/HNS Staff/ Posted on 16.06.2014
     
    Although the GameOver Zeus botnet and CryptoLocker ransomware have been disrupted, it is still too early for a victory celebration. First, the two week deadline expires on June 17th, leaving just one week left before cybercriminals could regain control of their botnet. Second, stories of the GameOver Zeus and CryptoLocker campaign have already spawned a number of copycats among mobile malware writers.

    On June 8th, Kaspersky Lab detected a mobile Trojan now operating in the USA and UK, called Svpeng, which combines the functionality of financial malware with ransomware capabilities. This is the first time that Svpeng, a famous money stealing mobile Trojan in Russia, has turned its attention to other markets.
     
    Help Net Security/ full read here/ http://www.net-security.org/malware_news.php?id=2783
     

    Jasper_The_Rasper
    Moderator
    Forum|alt.badge.img+54

    Four others arrested for malware / ransomware attacks

     


     
    14 Apr 2015 at 03:31, Richard Chirgwin
     
    Russia's Ministry of the Interior has gone public about the March 24 arrest of a 25-year-old and four others it believes was the leader of a gang of cyber-scum behind the “Svpeng” money-draining malware.
     
    The Android malware is believed to have netted a near million-dollar haul within Russia alone (50 million rubles), hitting 350,000 Google devices during 2013 and 2014.
     
    According to Forbes, Svpeng started by acting like a Google Play buy-credit window, opening over the top of the store requesting credit card details. Later, the group in charge switched tactics to ransomeware, popping up a fake FBI “penalty notification” on screens and locking devices until the gang was paid.
     
    Full Article
    Ssherjj
    1 person likes this
    • Ssherjj
      Ssherjj
    R
    Community Guide
    By Eduard Kovacs on April 14, 2015
     
    A 25-year-old individual has been arrested by law enforcement authorities on suspicion of being the developer of Svpeng, an Android Trojan used by cybercriminals to target online banking customers, Russia’s Ministry of Internal Affairs reported on Saturday.
    In addition to the 25-year-old who is believed to be the malware’s creator, officers arrested four other individuals suspected of being part of a cybercriminal group that used the Trojan to steal money from bank accounts. The suspects are from Russia’s Chelyabinsk region, the ministry said in a report on its Russian-language website.
    The Russian Interior Ministry’s Cybercrime Department “K,” which also took part in the takedown of the Simda botnet last week, said the suspects confessed to their crimes. They have been charged with theft, and creating, using and distributing malicious computer programs.
     
    full article

    Reply


    Terms & Conditions