Publications

Blogs authored at SonicWall

  • Gretel devices with pre-installed malware - Part 2 (Apr 10, 2019)
  • Gretel devices with pre-installed malware - Part 1 (Apr 08, 2019)
  • Apex Legends for Android - spyware, adware, verification scams and more (Mar 12, 2019)
  • Android crypto clipper monitors the clipboard of its victims (Feb 14, 2019)
  • The Android zazdi botnet uses fcm to communicate with its infected bots (Jan 8, 2019)
  • Dew18 banker for Android targets korean financial institutions (Dec 5, 2018)
  • Panini adware for Android soaks network bandwidth, bad news for users with limited data (Oct 17, 2018)
  • Vigilante malware removes cryptominers from the infected device (Sep 21, 2018)
  • A long running android spyware which targets social apps is still active (Aug 28, 2018)
  • PowerGhost - A stealthy miner with Eternal Blue component for spreading further (Aug 1, 2018)
  • Fake Fortnite apps target Android gamers (July 6, 2018)
  • Sudden spike in Slempo samples observed for Android (June 7, 2018)
  • Roaming Mantis attacks Android devices in Asia, likely behind OTP codes (May 8, 2018)
  • This Android Monero miner demands admin privileges (Apr 10, 2018)
  • Trojanized Android Ahmyth RAT spreads via legitimate apps (Mar 06, 2018)
  • New Android crypto-miner uses Android Debugging Tool to spread further (Feb 13, 2018)
  • Blackfriday brings malicious apps to the Android ecosystem (Nov 14, 2017)
  • Android Mazarbot spreads via phishing pages for Raiffeisen Bank (September 15, 2017)
  • The evolution of Android RAT SpyNote continues (August 18, 2017)
  • Android Ransomware spreading as codec pack installer (July 28, 2017)
  • Wannacry copycat rampant on Android ecosystem (June 28,2017)
  • Android Marcher update adds anti-emulation feature (June 01,2017)
  • Android botnet spreads via game guides ( May 5, 2017 )
  • The Android banker Marcher continues to evolve (April 14, 2017)
  • Old windows malware still follows its orders, lands up on Android devices with a hidden iframe (March 06, 2017)
  • Malicious Android banker for Serbank (February 24, 2017)
  • Fake Super Mario Run(s) to Android with malware (January 17, 2017)
  • Persian Lockscreen Android malware borrows heavily from online tutorials (December 8, 2016)
  • DressCode Android malware equipped to infiltrate corporate networks (October 21, 2016)
  • QuadRooter - the flaw that can affect millions of Android devices ( August 9, 2016)
  • Fake Pokemon GO apps tuck away dangerous malware (August 1, 2016)
  • Android Ad campaign HummingBad infects millions of devices ( July 8, 2016 )
  • Self-installing porn apps rampage the Android ecosystem (June 17, 2016)
  • New Android Lockscreen campaign spotted in the wild (May 12, 2016)
  • Metasploit enhanced Android malware spotted in the wild (April 15, 2016)
  • Android Banker steals Credit Card information and targets certain Banking apps (March 7, 2016)
  • Android Banker that hides inside an image file (January 28, 2016)
  • Active Android malware campaign steals Credit Card and Banking related information from infected devices (November 5, 2015)
  • Android PornDroid ransomware with updated features (September 25, 2015)
  • Android malware programmed to send massive amounts of messages ( August 7, 2015)
  • Android malware with hidden message for Security Analysts (June 19, 2015)
  • Stagefright - One of the most threatening Android exploit ever discovered (July 30, 2015)
  • Android malware hides malicious code in a Library file (April 8, 2015)
  • Adware campaign spreads on Android app stores ( Feb 12, 2015 )
  • CloudAtlas campaign makes its way to mobile platforms (December 25, 2014)
  • Android Windseeker with injection and hooking mechanisms (Oct 3, 2014)
  • Another Android Trojan targeting Korean Banks (July 18, 2014)
  • Android Banking Trojan targets Korean users (June 30, 2014)
  • First TOR-based file encrypting Android Ransomware (June 10, 2014)
  • AndroidLocker ransomware targeting android phones (May 15, 2014))
  • Android malware with SMTP capabilities (September 6, 2013)
  • Android Pincer Trojan equipped with data stealing and anti-analysis modules (June 7, 2013)
  • SuperClean Android Malware that can infect your PC (Feb 21, 2013)
  • Yet another Toll Fraud malware for Android (January 11, 2013)
  • Trojan uses Google Docs to cloak its communication with servers (November 21, 2012)
  • This LuckyCat wont bring you any luck (September 14, 2012)