'CopyCat’ Malware in its Peak Contaminated 14m Android Devices

An Android malware infected and proliferated so effectively that when its attacks were the maximum during April-May 2016, it contaminated 14m devices as well as rooted 8m of them.

According to security researchers, the malware sample called 'CopyCat' aided in earning $1.5m to its creators, chiefly via ad fraud in April-May 2016.

Security Investigators from the Mobile Research Team of Check Point, after detecting the malware during March 2017, assert that CopyCat primarily contaminated Android owners within the countries of Southeast Asia; however, Android owners numbering 280,000-and-more in USA too were contaminated. As per research, Asia was attributed with 55% of CopyCat contaminations, while Africa with 18% ranked No.2 on the list of countries with most contaminated Android gadgets.

CopyCat transmits monetary earnings to hackers, the income acquired from pop-up ads of applications rather than to app developers. In a computation by Check Point, a maximum of 4.9m fake applications got planted onto infected devices, generating a maximum of 100m advertisements. Within sixty days, CopyCat accounted an income of $1.5m-and-more that it transmitted to cyber-criminals.

Check Point associates the assault with MobiSummer, an app developer and tech startup in China. Now, it isn't clear whether the company had a direct involvement else had been victimized itself. Wvtm13.com posted this, July 6, 2017.

Check Point further states that CopyCat understandably proliferated via phishing scams as well as repackaged widely-used applications with malicious software when end-users took them down from intermediate application repositories. Once CopyCat contaminates an Android gadget, the malware roots the gadget for acquiring complete hold over it. It subsequently, thrusts Zygote an app that aids the process of launching using code for starting loading of illegitimate applications onto the gadget.

For gaining insights, Check Point's researchers retrieved data via accessing CopyCat's command-and-control servers. Reportedly, malevolent advertisements got exhibited on 3.8 million contaminated devices, whilst 4.4 million contaminated devices got utilized for "stealing credit" in connection with Google's Play Store referrals.

After its peak in 2016, CopyCat attacks slowed pace when Google blacklisted the malicious program on Play Project; however, according to Check Point, contaminated gadgets are likely yet under the program's impact.

Source: Spamfighter


With malware attacks becoming increasingly prevalent, phx-IT has your back. We will keep your business and your business data safe, without breaking the bank. Let us show you why our service is the best in the Valley, Contact Us for more information.  Josh Bowe, Brand Champion at phx-IT

phx-IT_LogoBall_75.png

London Met Police’s 18,000 Windows XP PCs is a disaster waiting to happen

According to MSPoweruser, the London Metropolitan Police are still using around 18,000 PCs powered by Windows XP, an operating system Microsoft stopped supporting in 2014. What's more is that the police force is upgrading its PCs from Windows XP to Windows 8.1, instead of Windows 10. Only 8 PCs at the police force are reportedly powered by the "most secure version of Windows right now." From the report:

From the looks of things, the London Metropolitan Police will continue to upgrade their systems to Windows 8.1 at the moment. Windows 8.1 is still being supported by Microsoft, although the mainstream support for the OS is set to end on the 9 January 2018. Microsoft will offer extended support for the OS until 2023, which means Windows 8.1 is still a much more secure alternative for the Metropolitan Police than Windows XP. Windows 10 still would have been the best option in terms of security, however. Microsoft is releasing security updates for the OS every month, and the new advanced security features like Windows Defender Advanced Threat Protection makes PCs running Windows a whole lot more secure.

The spokesman of the Conservative London Assembly said in a statement: "The Met is working towards upgrading its software, but in its current state it's like a fish swimming in a pool of sharks. It is vital the Met is given the resources to step up its upgrade timeline before we see another cyber-attack with nationwide security implications."

Source: https://mspoweruser.com/london-metropolitan-polices-18000-windows-xp-pcs-is-a-disaster-waiting-to-happen/

If you're still running Windows xp or 7 in your workplace, please contact us. We can help you work on a plan within your budget to upgrade.  (phx-IT)

Microsoft is using AI to combat Malware:

Windows Fall Creators Update will come with a hefty serving of security upgrades, made timely by the increasingly rampant cyberattacks targeting the platform these days. In a blog post, Microsoft has revealed how the upcoming major update will level up Windows Defender Advanced Threat Protection, a Win 10 enterprise service that flags early signs of infection. According to CNET, Windows enterprise director Rob Lefferts said the upgrade will use data from Redmond's cloud-based services to create an AI anti-virus that will make ATP much better at preventing cyberattacks.

One of the AI's features is the ability to instantly pick up the presence of a previously unknown malware on a computer. Microsoft can then quickly quarantine the malware in the cloud and create a signature for its identity that can be used to protect other computers from it. Lefferts says about 96 percent of cyberattacks use new malware, so this feature sounds especially helpful. It could certainly change the way Microsoft rolls out defense measures, since it currently takes researchers hours to conjure one up. By the time they're done, the malware might have already made its way to more computers.

While ATP's new security features will initially only be available to enterprise customers, CNET says Microsoft has plans to roll them out to ordinary users. In addition, the company wants ATP to support "more platforms beyond Windows" and has begun working to make that happen. Microsoft will release Fall Creators' preview between September and October, so these features (and more) will start hitting some businesses' and companies' PCs around that time.

Source: https://www.engadget.com/2017/06/28/microsoft-windows-fall-creators-update-security/

 

Welcome to the phx-IT Blog!

This is a test Blog post.

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce libero felis, dictum sagittis condimentum eu, varius quis quam. Orci varius natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Praesent quis quam felis. Class aptent taciti sociosqu ad litora torquent per conubia nostra, per inceptos himenaeos. Nunc in porta dolor. Nunc vel tristique tellus. Praesent sit amet justo ac sapien posuere ultrices. Nunc sed tellus erat. Suspendisse laoreet massa et orci volutpat, porta viverra ante faucibus. Nullam laoreet nisi mollis felis blandit sagittis.

Aenean molestie aliquam felis. Etiam porta sed lacus eget viverra. Sed laoreet tincidunt aliquam. Cras tristique tincidunt tellus, sed porta orci. Duis mattis arcu vitae ex ultricies convallis. Vivamus rutrum velit tempor, tincidunt elit et, bibendum purus. Proin accumsan feugiat nibh, sagittis euismod elit tincidunt fringilla.

Suspendisse fringilla felis in felis pretium, ut pellentesque ligula consequat. Vivamus tortor justo, tempus ut tempus semper, consequat ut orci. Etiam venenatis condimentum velit ac tempus. Fusce lobortis dapibus diam, et suscipit elit euismod a. Maecenas pulvinar tortor sed augue aliquet, sed porttitor lacus sagittis. Praesent consectetur malesuada hendrerit. Sed fringilla pulvinar metus, auctor aliquam odio. Curabitur sit amet leo congue enim accumsan semper. Morbi dictum eros porta vestibulum convallis.