Tech News
FireScam Malware Lures Victims By Posing As Telegram Premium
Researchers have discovered a new threat that is actively targeting Android users. Known as FireScam, this Android malware primarily focuses on Russian users by masquerading as Telegram Premium.
FireScam Android Malware Distributed Through Fake RuStore App
A recent report from cybersecurity firm Cyfirma reveals that a new Android malware, FireScam, is circulating among Russian users. This malware possesses all the necessary malicious capabilities to be a significant threat, including evading security measures, maintaining persistence on infected devices, and stealing data.
FireScam is spread through phishing websites that deceive victims. It is predominantly distributed through a fake RuStore app, which is a phishing site hosted on GitHub.io. By using the name of a legitimate app (RuStore), the malware tricks users into downloading it under the guise of Telegram Premium.
When the malicious app is downloaded, it installs a malware dropper APK that then downloads and installs the FireScam payload. Once on a device, the malware establishes persistent access and carries out various malicious activities, such as stealing messages, notifications, and other data, monitoring screen changes, transactions, and clipboard activity, and using obfuscation techniques to avoid detection. It also has capabilities to detect emulators and virtual environments.
These functionalities make FireScam resemble spyware. It initially sends stolen information to a Firebase Realtime Database endpoint, which is then filtered and moved to a private storage.
FireScam targets a wide range of users, infecting devices running Android 8 to Android 15.
The researchers have provided a detailed technical analysis of FireScam in their report.
Given that phishing is used to distribute this malware, it is crucial for users to be cautious of the websites they visit. Avoiding interactions with unsolicited emails, messages, and random URLs can help prevent such threats.
We welcome your thoughts and comments below.
Hong Kong airport makes history raising USD 7 billion in bonds issue, BA
The Rangers in the South Review
Cohere just launched ‘North,’ its biggest AI bet yet for privacy-focused enterprises
Yakuza boss tried to traffic nuclear weapons-grade plutonium
Biden administration succeeds in temporarily blocking a plea deal for accused 9/11 mastermind
Winnipeg man charged with sexually assaulting children at daycare: police – Winnipeg
It’s okay not to be okay sometimes
Like a Dragon: Pirate Yakuza in Hawaii new combat features revealed
FireScam Malware Lures Victims By Posing As Telegram Premium
YouTube TV releases helpful 4K update
Singapore Airlines CEO set to join board of Air India, BA News, BA
Bangladeshi police agents accused of selling citizens’ personal information on Telegram
The Top 20 Motivational Instagram Accounts to Follow (2024)
Satisfy Your Meat and BBQ Cravings While in Texas
Have Unlimited Korean Food at MANY Unlimited Topokki!
Soccer team’s drone at center of Paris Olympics spying scandal
Don’t Waste Your Time in Anger, Regrets, Worries and Grudges
The Criterion Collection announces November 2024 releases, Seven Samurai 4K and more
15 of the Best Trike & Tricycles Mums Recommend
15 Best Magnetic Tile Race Tracks for Kids!
-
Destination4 months agoSingapore Airlines CEO set to join board of Air India, BA News, BA
-
Tech News7 months agoBangladeshi police agents accused of selling citizens’ personal information on Telegram
-
Motivation7 months agoThe Top 20 Motivational Instagram Accounts to Follow (2024)
-
Guides & Tips6 months ago
Satisfy Your Meat and BBQ Cravings While in Texas
-
Guides & Tips5 months ago
Have Unlimited Korean Food at MANY Unlimited Topokki!
-
Tech News6 months agoSoccer team’s drone at center of Paris Olympics spying scandal
-
Self Development7 months agoDon’t Waste Your Time in Anger, Regrets, Worries and Grudges
-
Gaming5 months agoThe Criterion Collection announces November 2024 releases, Seven Samurai 4K and more