New “Antidot” Banking Trojan disguised Fake Google Play Updates

The “Antidot” Android Banking Trojan pretends to be a Google Play update app and targets Android users in different regions. It uses VNC and overlay techniques to steal credentials.

Cyble Research and Intelligence Labs (CRIL) found that the new Android Banking Trojan, called “Antidot,” pretends to be a Google Play update app and can target many different people. It has harmful features like overlay attacks and keylogging to get sensitive information. Antidot communicates with a server to get commands and can do things like collect SMS messages, make USSD requests, and control device features like the camera. It can also use VNC to control infected devices.

• International

US introduces Cyber Trust Mark for smart devices

By infosecbulletin / Thursday , January 9 2025

Launched in July 2023, the new US Cyber Trust Mark allows smart devices from participating vendors to showcase their cyber...

Read More

• Vulnerabilities

CISA warns of critical Oracle, Mitel flaws active exploitation

By infosecbulletin / Wednesday , January 8 2025

CISA has urgent warnings for organizations regarding three security flaws in Mitel and Oracle systems that are currently being exploited....

Read More

• Uncategorized

Best Cybersecurity Certifications for Your Career in 2025

By infosecbulletin / Wednesday , January 8 2025

Cybersecurity professionals serve as the first line of defense against hackers, hacktivists, and ransomware groups. To combat these cyber threats,...

Read More

• Alert
• Vulnerabilities

CVE-2024-40766
48,000+ Vulnerable SonicWall Devices exposed to ransomware attack

By infosecbulletin / Tuesday , January 7 2025

Over 48,000 SonicWall devices are still vulnerable to a serious security flaw, putting organizations worldwide at risk of ransomware attacks....

Read More

• International

India releases draft Digital Personal Data Protection Rules

By infosecbulletin / Monday , January 6 2025

On Friday, the Indian government released the draft Digital Personal Data Protection Rules, requiring social media and online platforms to...

Read More

• International

Microsoft to invest $80 Billion in AI Data Center

By infosecbulletin / Monday , January 6 2025

Microsoft recently shared a vision for the future of American technology and economic competitiveness, highlighting Artificial Intelligence (AI) as central...

Read More

• Uncategorized

City Bank Customer financial reports posted dark market for sale

By infosecbulletin / Sunday , January 5 2025

According to Bangladesh Cyber ​​Security Intelligence (BCSI) report, City Bank has been the victim of a cyber attack. The hacker...

Read More

• Alert

3.3 Million Email Server Expose User Passwords and Messages in Plain Text

By infosecbulletin / Saturday , January 4 2025

Around 3.3 million servers are running POP3/IMAP email services without encryption (TLS) enabled, the Shadowserver Foundation, a nonprofit security organization,...

Read More

• Hot Topic
• Vulnerabilities

Memory-Dump-UEFI
Researcher dumping memory to bypass BitLocker on Windows 11

By infosecbulletin / Thursday , January 2 2025

Researchers have demonstrated a method to bypass Windows 11’s BitLocker encryption, enabling the extraction of Full Volume Encryption Keys (FVEKs)...

Read More

• Vulnerabilities

CVE-2024-49112
PoC Exploit Released for Zero-Click vulnerability in Windows

By infosecbulletin / Thursday , January 2 2025

SafeBreach Labs revealed a zero-click vulnerability in the Windows Lightweight Directory Access Protocol (LDAP) service, dubbed “LDAP Nightmare”. This critical...

Read More

Cyble Research and Intelligence Labs (CRIL) published an analysis of an Android Banking Trojan called Brokewell. It was created by malware developer Baron Samedit and can take control of devices previously.

Now, CRIL found a new Android Banking Trojan called “Antidot,” first seen on May 6, 2024. This Trojan uses overlay attacks to steal credentials. Click here to read out the full report.