DarkOperator 🚀Jan 23, 2023
#RoamingMantis' New #DNS Changer Function to Target Public Routers
https://cyware.com/news/roaming-mantis-new-dns-changer-function-to-target-public-routers-33667a99
Roaming Mantis' New DNS Changer Function to Target Public Routers

Roaming Mantis campaigns got a makeover with a DNS changer function. Using this feature, adversaries can illegally manage all communications from devices via compromised Wi-Fi routers.

Cyware
Bob CarverJan 21, 2023
Threat actors associated with the Roaming Mantis attack campaign have been observed delivering an updated variant of their patent mobile malware known as Wroba to infiltrate Wi-Fi routers and undertake Domain Name System (DNS) hijacking. https://thehackernews.com/2023/01/roaming-mantis-spreading-mobile-malware.html #CyberSecurity #DNSHighjacking #Wifi #routers #RoamingMantis
Roaming Mantis Spreading Mobile Malware That Hijacks Wi-Fi Routers' DNS Settings

Roaming Mantis spreading updated Wroba mobile malware that hijacks DNS settings of connected Wi-Fi routers for malicious attacks.

The Hacker News
DarkOperator 🚀Jan 19, 2023
#RoamingMantis' Hacking Campaign Adds #DNS Changer to #Mobile App https://bit.ly/3XJENf6
Roaming Mantis' Hacking Campaign Adds DNS Changer to Mobile App

The new feature can infiltrate WiFi routers and undertake DNS hijacking

Infosecurity Magazine
ITSEC NewsOct 30, 2020
Wroba Mobile Banking Trojan Spreads to the U.S. via Texts - The Roaming Mantis group is targeting the States with a malware that can steal information, harves... https://threatpost.com/wroba-mobile-banking-trojan-spreads-us/160785/ #fakeshipmentnotifications #packagenotifications #appleidcredentials #fakebrowserupdate #mobilesecurity #self-propagate #bankingtrojan #mobilemalware #roamingmantis #websecurity #iosphishing #kaspersky #targeting #malware #texts #wroba #apac #u.s. #sms
Wroba Mobile Banking Trojan Spreads to the U.S., via Texts

The Roaming Mantis group is targeting the States with a malware that can steal information, harvest financial data and send texts to self-propagate.

Threatpost - English - Global - threatpost.com
ITSEC NewsJul 2, 2020
FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps - New ‘smishing’ campaigns from the Roaming Mantis threat group infect Android users with the FakeSp... more: https://threatpost.com/fakespy-android-malware-spread-via-postal-service-apps/157102/ #roamingmantis #infostealer #mobileapps #datatheft #phishing #smishing #malware #android #fakespy #hacks #china #data #usps #sms
FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps

New ‘smishing’ campaigns from the Roaming Mantis threat group infect Android users with the FakeSpy infostealer.

Threatpost - English - Global - threatpost.com