The page may not load correctly.
December 2, 2022
The number of user requests to decrypt files affected by encoders decreased by 28.06% in October. After a brief activity decrease in September, Trojan.Encoder.26996 once again became the most common encoder, with a share of 27.05 of all incidents recorded. At the same time, the leader of the previous month, Trojan.Encoder.3953, dropped down to second place with a share of 25.46%.
During October, Doctor Web’s malware analysts discovered many new threats on Google Play. Among them were trojan apps, adware, and unwanted software.
The most common threats of the month:
In October, the number of user requests to decrypt files affected by encoders decreased by 28.06% compared to September.
In October, we observed an increase in the number of fake job-search websites. On such sites, fraudsters, disguised as representatives of large Russian companies, offered users employment with attractive conditions. This included simple duties, flexible working hours, and high wages. For example, fraudsters created fake job vacancies for the position of a “remote order-processing employee”. Candidates were required to register an account, after which they allegedly could immediately begin working. However, to withdraw their “earned” money, they were requested to “activate” their account by paying a fee.
To lure as many users as possible into a trap, scammers sent out phishing emails with links to such websites.
The screenshot above shows an example of a fraudulent site with a fake job offer. Scammers use the name and logo of the real company on whose behalf they are proposing the position. In addition, this webpage contains fake comments which are meant to assure potential victims that this job offering is secure and legitimate.
In October, we observed a slight decrease in the activity of advertising trojans compared to the previous month. Nonetheless, they remain one of the most common threats that Android users encounter. Moreover, there was noticeable activity of banking trojans and applications that can be used for cyber espionage.
Over the past month, Doctor Web’s malware analysts found many new threats on Google Play. These include fake programs from the Android.FakeApp family that are used in various fraudulent schemes. Adware and unwanted software were also among them.
The following October events involving mobile malware are the most noteworthy:
Find out more about malicious and unwanted programs for mobile devices in our special overview.
© Doctor Web
2003 — 2023
Doctor Web is a cybersecurity company focused on threat detection, prevention and response technologies
Doctor Web in social networksLink accounts