The page may not load correctly.
December 28, 2018
The last month of 2018 did not see any noticeable events related to information security. Among the malware detected on computers and in emails, malicious JavaScript scenarios remain prevalent. Most of them are designed to download other malware to an infected device and mine cryptocurrencies using the infected computer’s hardware. Like in November, the multicomponent banking malware Trojan.SpyBot.699 was often detected on hard disks. Cybercriminals can use it to remotely execute various commands on a computer and launch other malicious applications.
In December, cases involving the following ransomware modifications were registered by Doctor Web’s technical support service:
A total of 257,197 URLs from non-recommended websites were added to the Dr.Web database in December 2018.
November 2018 | December 2018 | Dynamics |
---|---|---|
+ 231,074 | + 257,197 | +11.3% |
In December, Doctor Web experts found the malicious application Android.BankBot.495.origin that targeted Brazilian users on Google Play. It stole confidential banking details and could covertly manage other programs using the accessibility features of Android. Other than that, Google Play turned out to contain adware Trojans from the Adware.HiddenAds and Adware.Patacore families and other malicious and unwanted applications. Virus analysts have also discovered a new version of the commercial spyware Program.Spyzie.1.origin that allowed attackers to spy on mobile device owners.
The following December events related to mobile malware were most noteworthy:
Find out more about malicious and unwanted programs for mobile devices in our special overview.