TrickMo Trojan Adopts TON Blockchain for Evasive C2 Routing
A new variant of the TrickMo Trojan, tracked as TrickMo C, has emerged, cleverly using The Open Network (TON) blockchain to disguise its command-and-control traffic, making it even harder to detect. This sneaky malware targets banking and wallet users in France, Italy, and Austria through convincing TikTok-themed lures on Facebook…
#TrickmoTrojan #TonBlockchain #AndroidMalware #MobileThreats #EvasiveC2Routing
Your iPhone can be hacked in minutes and DarkSword shows how easy it is
https://fed.brid.gy/r/https://nerds.xyz/2026/03/darksword-ios-exploit/
RedAlert Trojan spreads via SMS spoofing in Israel.
Fake emergency APK harvests GPS, contacts & SMS.
Uses proxy hooks & reflection to evade Android checks.
Enforce MDM. Block sideloading.
Full report:
https://www.technadu.com/redalert-trojan-campaign-disseminates-fake-emergency-app-targeting-israel-via-sms-spoofing-steals-contacts-gps-data/622048/
📣⚠️ New Q4 2025 malware report reveals a rise in Android banking trojans, resurgence of Joker malware on Google Play, and widespread use of backdoored apps.
Read: https://hackread.com/q4-2025-malware-telegram-backdoor-joker-google-play/
CISA has added two Android Framework 0-days (CVE-2025-48572 & CVE-2025-48633) to the KEV list, confirming active exploitation.
Together, they enable privilege escalation and information disclosure, forming a potentially complete compromise path for targeted devices.
Federal agencies have a December 23 patch deadline, and wider organizations are encouraged to roll out updates and monitor for related indicators.
💬 Mobile ecosystems remain a critical attack surface - what best practices have worked for your teams?
Source: https://cybersecuritynews.com/android-0-day-vulnerability-exploited/
Follow us for ongoing vulnerability and threat intelligence updates.
#Cybersecurity #AndroidSecurity #KEV #CISA #ZeroDay #MobileThreats #ThreatIntel #Infosec #SecurityUpdates #DeviceSecurity
A single WhatsApp message sent a disguised image that unlocked a zero-day vulnerability in Samsung devices, letting attackers install a covert surveillance kit. How safe is your smartphone when a simple image can change everything?
https://thedefendopsdiaries.com/landfall-spyware-exploiting-a-samsung-zero-day-via-whatsapp/
#landfallspyware
#samsungzeroday
#whatsappsecurity
#mobilethreats
#androidvulnerabilities
New Android malware mutes alerts while draining crypto wallets — silent theft in your pocket. Stay patched, stay alert. 📱💸 #MobileThreats #CryptoSecurity
Your smartphone might soon be acting on its own. Herodotus Android malware is learning your every tap to outsmart security. How safe is your mobile life?
https://thedefendopsdiaries.com/herodotus-android-malware-the-next-evolution-in-cyber-deception/
#androidmalware
#cyberdeception
#mobilethreats
#aiincybersecurity
#malwareevasion
Android spyware ClayRat uses Telegram & fake WhatsApp/TikTok/YouTube sites to spread.
Abuses SMS handler to steal data & self-propagate via contacts.
Full breakdown: https://www.technadu.com/clayrat-spyware-campaign-targets-android-users-via-telegram-and-fake-whatsapp-tiktok-youtube-sites/611123/
Imagine your phone being hijacked like a remote desktop—Klopatra malware uses VNC to let hackers control your Android in real time. Could your device be next?
https://thedefendopsdiaries.com/klopatra-the-vnc-enabled-android-malware-redefining-mobile-threats/
#androidmalware
#klopatra
#vncsecurity
#mobilethreats
#cybersecurity2025
Analyst207
NERDS.xyz – Real Tech News for Real Nerds [Unofficial]
TechNadu
Hackread.com
The DefendOps Diaries
Manuel Bissey