Fortinet Blog | News and Threat Research

Last week the security world was abuzz with news of a new attack vector for mobile attacks. The malware was sent to the accounts of Tibetan human rights advocates and activists from the hacked account of one of the activists re...

Insomni’hack 2013 took place last week at Geneva and I had the opportunity to attend. Insomni’hack DAY 1 consisted of one day workshops on subjects ranging from “Linux exploitation” to “How to ...

Android/Claco.A!tr is a new mobile malware that has been in the news recently for it’s unique ability to infect PCs. Even though we’ve seen an attack vector of this kind on the Symbian OS before (SymbOS/CardTrap), ...

I recently came across an Android malware sample that does your usual data stealing i.e. leaking data from the victim’s phone such as the phone number, contact information etc. Most vendors name this sample Uranico (Andr...

Feel free to browse through our Zitmo timeline. Please note that variant naming depends on many factors including but not limited to chronology. Hence variant letters (.A) don’t always reflect the order of appearance in t...

While going through our regular (and never-ending) supply of malicious Android samples, we came across an interesting variant a couple of days back. Like most Android Trojans these days, the piece of malware benefits by sending...

BYOD – Lessons From The Past In a recent survey of people in their 20’s conducted by Fortinet, the majority of respondents stated that bringing their own device (BYOD) to their workplace was a right and not a privilege. http:/...

With the migration of most services to the cloud, some enterprising Android malware developers have decided to profit from this. Google provides a service known as Cloud to Device Messaging (C2DM) that allows developers to sen...

Denis Maslennikov reported a new SMS trojan, Android/Mania, which emanates from France. This malware hasn’t any outstanding functionality - it silently sends SMS messages to a short number, something we only see too often...

As explained in our previous post (DroidKungFu is getting smarter), DroidKungFu now comes in 7 different flavors. Here is an updated graph of their similarities. Just like our previous graph (Clarifying Android DroidKungFu var...

Mobile botnet Android/RootSmart (aka Bmaster) is making substantial amount of money from premium SMS numbers or services, according to Cathal Mullaney’s discovery of a mobile botnet front-end: yes, we had told you so. ...

A few days ago, CarrierIQ published a 19-page report detailing their software and business. I read the 19 pages, and in case you were wondering, the statements of my previous blog post still stand, even more, they are confirmed...

Q1- The basics. What is Carrier IQ? CarrierIQ is a controversial piece of code which was intentionally placed on several mobile phones by their vendors or carriers. It has the capability of monitoring and/or collecting various...

  QR code with a link to Riskware/Jifake!Android   A long time ago, more than 2 years ago actually, I blogged about the dangers of QR codes: ”_virus gangs could use this technology to have the end-user follow malicio...

This is a short update to our prior post concerning Zitmo on Android. Is this really Zitmo? This fake Trusteer malware shows several differences with prior Symbian variants, but, for simplicity (and because it’s easy to...