Mobile Security August 17, 2021

How to Avoid Smishing Attacks Targeting Subscription Service Users

3 min read - If you’re anything like me, you used delivery more during the pandemic than before. Both getting food brought to my door and meal kit boxes mean people don’t have to mask up and go out to the grocery store. But…

Intelligence & Analytics April 29, 2021

The Story of FakeChat

11 min read - Starting late December 2020, IBM Trusteer’s mobile threat research lab discovered and began closely tracking a new Android banking malware that appeared to be mostly targeting users in Spain. Per our analysis, the purpose of the malware is to steal…

Endpoint January 28, 2021

What You Need to Know About Scam Text Messages in 2021

3 min read - The threat of scam text messages may now seem distant, even quaint. With all the new, exotic and sophisticated attacks that have arisen in the past decade, surely text message attacks are low on the list. But, they can still…

News January 19, 2021

Drivers Beware: Text Phishing Disguised as New York State DMV Messages

3 min read - Text phishing scammers are targeting New York state drivers with messages asking them to update their driver’s licenses. Using the ongoing adoption of the REAL ID Act of 2005 in an attempt to make the scam sound legitimate, the attackers…

Endpoint April 21, 2020

New Android Banking Trojan Targets Spanish, Portuguese Speaking Users

6 min read - IBM X-Force recently analyzed a new Android banking Trojan dubbed "Banker.BR" that appears to be targeting users in Spain, Portugal, Brazil and other parts of Latin America.

Endpoint April 9, 2020

Phishers and iPhone Thieves Rolling Out Multimillion-Dollar Operations

9 min read - Going down the rabbit hole of a physical iPhone theft followed by a SMiShing campaign, IBM X-Force IRIS researchers found a large-scale operation of phishers with over 600 phishing domains.

Advanced Threats March 24, 2020

TrickBot Pushing a 2FA Bypass App to Bank Customers in Germany

13 min read - Our team is closely monitoring TrickBot's developing capabilities, including its new cross-channel attacks using the TrickMo component.

February 24, 2020

WLAN Employed by Emotet as New Distribution Method

2 min read - Security researchers discovered a new variant of the Emotet malware family that employed a wireless local area network (WLAN) as its distribution method.

Malware February 19, 2020

Emotet SMiShing Uses Fake Bank Domains in Targeted Attacks, Payloads Hint at TrickBot Connection

3 min read - Before a short lull in mid-February, Emotet was in the midst of a rise in activity that has been apparent since late 2019 — in terms of both spam and infecting potential victims via SMiShing attacks.

February 4, 2020

Android Malware Attempts to Steal Money From Diabetic Patients

2 min read - Security researchers discovered a new form of Android malware that is attempting to steal money from diabetic patients.