Mar 12 2024
Welcome to Gone Phishing, your daily cybersecurity newsletter thatโs radioactive in the fight against cybercrime like that cat in Japan ๐ฑ๐ฏ๐
Todayโs hottest cybersecurity news stories:
๐ Brazilian bank app users targeted by CHAVECLOAK phishing attack ๐ฃ
๐ฑ Oh the humanity! First the beer and then the brew. Belgian beer, coffee targeted ๐ฏ
๐ฎ Beware! Fake Leather wallet app on Apple App Store is a crypto drainer ๐ธ
giphy.com
Brazilian users are under attack from a sophisticated banking trojan named CHAVECLOAK, spread through phishing emails containing PDF attachments, according to Fortinet FortiGuard Labs.
๐ง The attack begins with PDF attachments posing as DocuSign contracts, prompting users to click on a button to “read and sign” documents. Instead, this leads to the download of a ZIP file containing an installer named “Lightshot.exe.”
๐ The installer employs DLL side-loading techniques to load the CHAVECLOAK malware, which steals sensitive information. It monitors user activity on banking and cryptocurrency platforms, logging keystrokes, blocking screens, and displaying deceptive pop-ups.
๐ป Fortinet also discovered a Delphi variant of CHAVECLOAK, emphasizing the prevalence of Delphi-based malware in Latin America.
โ ๏ธ This threat emerges amidst an ongoing mobile banking fraud campaign across the U.K., Spain, and Italy, utilizing Android malware called Copybara via smishing and vishing tactics. Threat actors manage these attacks through a centralized web panel named “Mr. Robot.”
๐ The sophistication of on-device fraud is on the rise, as seen in a TeaBot campaign infiltrating the Google Play Store. This emphasizes the critical need for heightened vigilance and security measures to combat evolving cyber threats targeting financial sectors and users globally.
The Rundown is the worldโs fastest-growing AI newsletter, with over 500,000+ readers staying up-to-date with the latest AI news and learning how to apply it.
Our research team spends all day learning whatโs new in AI, then distills the most important developments into one free email every morning.
๐ Following a recent cyberattack on Duvel Moortgat Brewery, the Belgian village of Breendonk faces another incident affecting local coffee roasters Koffie Beyers.
๐ฎโโ๏ธ Police have launched investigations into both incidents, with specialists from a computer crime unit on the scene. The proximity of the attacks, both in time and location, is striking, occurring within the same municipality less than a mile apart.
โ Koffie Beyers, Belgium’s largest coffee roaster with operations across five countries, including Italy, is yet to clarify the extent of the impact. There’s no confirmation whether other facilities have been affected.
๐บ Duvel Moortgat Brewery, an international beer exporter, has halted production at its Belgian and U.S. sites due to the attack. However, assurances have been made about sufficient stock to meet consumer demand.
๐ While investigations are underway separately, authorities will compare the incidents for potential similarities, emphasizing the seriousness of the situation and the need for heightened cybersecurity measures.
๐ย The Motley Fool: โFool me once, shame on โ shame on you. Fool me โ you can’t get fooled again.โ Good olโ George Dubya ๐ Let us tell whoโs not fooling around though; thatโs the Crรผe ๐ at Motley Fool. Youโd be a fool (alright, enough already! ๐) not to check out their Share Tips from time to time so your savings can one day emerge from their cocoon as a beautiful butterfly! ๐ Kidding aside, if you check out their website theyโve actually got a ton of great content with a wide variety of different investment ideas to suit most budgets ๐คย (LINK)
๐ตย Wander: Find your happy place. Cue Happy Gilmore flashback ๐๏ธโณ๐๐๏ธ Mmmm Happy Placeโฆ ๐ So, weโve noticed a lot of you guys are interested in travel. As are we! We stumbled upon this cool company that offers a range of breath-taking spots around the United States and, honestly, the website alone is worth a gander. When all you see about the Land of the free and the home of the brave is news of rioting, looting and school shootings, itโs easy to forget how beautiful some parts of it are. The awe-inspiring locations along with the innovative architecture of the hotels sets Wander apart from your run of the mill American getaway ๐๏ธ๐ย (LINK)
๐ย Digital Ocean: If you build it they will come. Nope, weโre not talking about a baseball field for ghosts โพ๐ป๐ฟ (Great movie, to be fair ๐). This is the Digital Ocean whoโve got a really cool platform for building and hosting pretty much anything you can think of. If you check out their website youโll find yourself catching the buzz even if you canโt code (guilty ๐). But if you can and youโre looking for somewhere to test things out or launch something new or simply enhance what youโve got, weโd recommend checking out their services foโ sho ๐ And how can you not love their slogan: Dream it. Build it. Grow it. Right on, brother! ๐ฟย (LINK)
๐ผ The developers of the Leather cryptocurrency wallet issue a caution regarding a counterfeit app on the Apple App Store, reportedly draining users’ digital assets.
๐ Wallet drainers, as they’re called, deceive users into revealing secret passphrases or execute malicious transactions, enabling attackers to pilfer all digital assets, including NFTs and cryptocurrency.
๐ฑ Despite reports to Apple, the fake Leather app remains accessible on the App Store, posing a significant threat to unsuspecting users who may unknowingly input their passphrase, thereby risking asset loss.
๐ก๏ธ Leather advises affected users to swiftly transfer their cryptocurrency to a new wallet as a precautionary measure against potential asset drain. However, the malicious app persists despite warnings.
โ ๏ธ Notably, the fake app maintains a high rating and features seemingly fabricated user reviews, adding to its deceptive allure. Such incidents underscore the importance of vigilance when downloading apps and verifying their authenticity through official sources.
๐ For enhanced security, it’s advisable to access apps through links provided on official project websites, ensuring protection against potential threats.
Stay informed and stay safe!
Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!
๐ก๏ธ Tl;dr sec: Join 30,000+ security professionals getting the best tools, blog posts, talks, and resources right in their inbox for free every Thursday ๐
๐ตย Crypto Pragmatist: Crypto made simple. Actionable alpha in 5 minutes, 3x a week. Join 47,000+ investors and insiders, for ๐
๐ย Bitcoin Breakdown: The best in Bitcoin, carefully curated by an alien from the future ๐พ
Let us know what you think!
So long and thanks for reading all the phish!