BTC $65266.0064
ETH $3170.2759
BNB $579.9567
SOL $151.5810
stETH $3170.3792
XRP $0.5307
DOGE $0.1622
TON $6.2152
ADA $0.5047
AVAX $37.5087
wstETH $3690.1011
WBTC $65350.8728
DOT $7.1858
WETH $3168.2550
TRX $0.1112
BCH $512.3933
LINK $14.9136
MATIC $0.7262
ICP $15.2978
UNI $7.8248
LTC $85.1449
DAI $1.0008
RNDR $9.1190
CAKE $2.9399
IMX $2.1935
STX $2.8650
ETC $27.9082
FDUSD $0.9998
MNT $1.2003
NEAR $6.3271
FIL $6.6129
OKB $55.7832
HBAR $0.0909
TAO $475.1056
VET $0.0423
WIF $3.0785
ATOM $8.6865
MKR $3070.6157
KAS $0.1185
FET $2.4759
GRT $0.2860
INJ $29.1371
PEPE $0.0000
USDE $0.9998
XLM $0.1150
THETA $2.2569
XMR $121.6010
BTC $65266.0064
ETH $3170.2759
BNB $579.9567
SOL $151.5810
stETH $3170.3792
XRP $0.5307
DOGE $0.1622
TON $6.2152
ADA $0.5047
AVAX $37.5087
wstETH $3690.1011
WBTC $65350.8728
DOT $7.1858
WETH $3168.2550
TRX $0.1112
BCH $512.3933
LINK $14.9136
MATIC $0.7262
ICP $15.2978
UNI $7.8248
LTC $85.1449
DAI $1.0008
RNDR $9.1190
CAKE $2.9399
IMX $2.1935
STX $2.8650
ETC $27.9082
FDUSD $0.9998
MNT $1.2003
NEAR $6.3271
FIL $6.6129
OKB $55.7832
HBAR $0.0909
TAO $475.1056
VET $0.0423
WIF $3.0785
ATOM $8.6865
MKR $3070.6157
KAS $0.1185
FET $2.4759
GRT $0.2860
INJ $29.1371
PEPE $0.0000
USDE $0.9998
XLM $0.1150
THETA $2.2569
XMR $121.6010
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • New banking trojan TgToxic attacks Android users in Southeast Asia

    Cybersecurity researchers at security firm Trend Micro have reported an ongoing malware campaign to spread the TgToxic banking trojan, which has been active since July 2022. The campaign includes attacks on cryptocurrency wallets, illegal money transfers and the theft of credentials from banking and financial apps of Android users in Taiwan, Thailand and Indonesia.

    According to the researchers, the attackers use malware called TgToxic, which is distributed under the guise of legitimate applications and promoted through phishing sites related to cryptocurrency and intimate services.

    In their attacks, the cybercriminals abuse the legitimate Easyclick test environment to write a JavaScript script to automatically hack the user interface of an Android device. This script allows hackers to automate actions such as clicks and gestures.

    The TgToxic malware scans cryptocurrency wallets and banking applications and steals user-entered credentials. The cybercriminals then use these credentials to make small transactions through the official app without requiring user confirmation. In addition, TgToxic can do many other things, including:

    • getting a list of contacts;
    • providing access to the victim's SMS messages;
    • photo using the camera;
    • automatic receipt of all necessary permits;
    • installation of third-party applications;
    • collects all emails of the victim;
    • automatic transfer of the victim's cryptocurrency from the crypto wallet applications installed on the device.

    The experts concluded that the TgToxic malware is not complex, but is rapidly evolving, gaining new features. Combining TgToxic with Easyclick's automation framework makes it even more challenging for cybersecurity experts. It has the potential to grow into sophisticated malware and rapidly expand its operations across multiple geographies.

    Author DeepWeb
    QBot operators now use OneNote to spread Trojan via email
    The heads of the largest IT companies are under investigation for conspiracy with the US government

    Comments 0

    Add comment