New Cyber Alert – New Nexus Trojan on Android, Attacking Mobile Banking Accounts
The new Android trojan is being spread through phishing pages disguised as legitimate websites called YouTube Vanced. The botnet, named Nexus, was first made available on a forum in January 2023 for a monthly fee of $3,000 and was described as a “very new” project under “continuous development”. With the rise of the malware-as-a-service model, more hackers are gaining access to this malware by paying for access to additional malware. Once the Nexus trojan infiltrates a victim’s bank accounts, it can drain and steal funds through overlay attacks, where a fake version of a legitimate banking app is superimposed on top of it.
What is the Nexus Trojan Malware?
Capable of operating covertly, the Nexus trojan can avoid detection and security measures. Once installed on a device, it has the ability to intercept and log sensitive information including login credentials, credit card details, and other financial data. The trojan can even copy, log and forward two-factor authentication codes, whether they are sent via text or from the Google Authenticator app. Additionally, it can delete text messages received on the infected device, halt the 2-factor authentication stealer module, and regularly update itself by communicating with a command-and-control server controlled by cyber criminals.
How Can you Protect Yourself?
Implementing Mobile Device Management (MDM), paired with advanced Sign On Authentication tools such as Duo, you can ensure that your mobile devices will be protected from the latest Cyber Threats. Mobile Device Management can ensure that; only Authorised Applications can be downloaded, only specific applications have access to phone features such as clipboard, screen recording, camera & more, protecting your sensitive business information from being accessed by unauthorised applications or malware. Duo authentication also ensures that many of your business applications are protected from unauthorised access by adding in a secondary security step that is not vulnerable to these common authentication code stealer methods.
Latest News Stories
Update Google Chrome to Protect your Business from this Zero Day Threat
Google's Chrome browser, used by over three billion users worldwide, recently encountered its first Zero-Day exploit of the year. In response, Google has issued an urgent update to address the discovered vulnerability, CVE-2023-2033, which affects Chrome on Windows,...
(Updated 14/04/23 – 16:00BST) Western Digital Suffers Cyber Attack and Takes Down MyCloud Service
UPDATE 14/04/23 - 16:00BST: Hackers who breached Western Digital claim to have stolen around 10 terabytes of data, including customer information, and are demanding a minimum 8-figure ransom to prevent its publication. According to an article on popular Technology...
UK Businesses Targeted by Cyber Attacks Every 1 Minute in Q1 2023
Businesses across the UK faced an alarming rate of cyber attacks during the first quarter of 2023, with an average of one attack every minute, as revealed by a recent report from Beaming, who have been monitoring malicious web activity since 2016. The company's...
Our Customers
Testimonials
Mark, Modern Creatives
Local, extremely helpful, prompt. Quick to react when there have been issues (not caused by One2call). Have recommended in the past to clients.
Jeanette Addis, Principle Support Ltd
Very approachable, friendly team and fast response time. Thank you.
John Griffiths, Acclaimed Family Law
Personal touch ,easy to deal with ,thank you.