Android Trojan
-
Google disrupts IPIDEA residential proxy network linked to malware
Google Threat Intelligence Group disrupted IPIDEA this week, taking down domains and infrastructure tied to a residential proxy network promoted to 6.7 million users. The action targeted trojanized apps and embedded SDKs that turned devices into proxies.
-
Silver Fox uses fake Microsoft Teams installers in false-flag ValleyRAT campaign
Security researchers report that the Silver Fox group has run an SEO poisoning campaign since November 2025 that uses fake Microsoft Teams installers to deliver ValleyRAT to organisations in China; technical analysis from ReliaQuest and Nextron Systems details layered infection chains, false-flag indicators and the use of vulnerable drivers.
-
New Campaign Uncovers 67 Trojanized GitHub Repositories Targeting Python Users
Cybersecurity experts have revealed a new campaign identifying 67 trojanized GitHub repositories that falsely advertise Python hacking tools, delivering malicious software instead. This campaign highlights the significant risks of using open-source repositories for developers.
-
Emerging Android Banking Trojan Crocodilus Expands Global Reach, Targeting Users in Europe and South America
ThreatFabric’s recent findings highlight the worrying proliferation of the Android banking Trojan Crocodilus, which has expanded its malicious activities from Europe and Turkey to South America, employing increasingly sophisticated techniques to target users.
