Xopero Security Center: the secret behind xHelper has been revealed

Welcome to the next episode of the Xopero Security Center! The most crucial security updates of the week? There were few: Microsoft Patch Tuesday, Oracle and Adobe. There is also a critical bug in Google Chrome, so don’t forget to update. Coronavirus scams are still in the wide – be careful. And at last the secret behind xHelper – an unkillable Android backdoor – has been revealed.

Monday, 13 April 2020

The Dutch police took down 15 DDoS-for-hire services in a week (Source)
Dell releases new tool to detect BIOS attacks (Source)
Oracle tackles a massive 405 bugs for its April quarterly patch update (Source)
Overlay malware leverages Chrome browser, targets banks and heads to Spain (Source)
US consumers report $12M in COVID-19 scam losses since January (Source)
San Francisco international airport discloses data breach (Source)

Tuesday, 14 April 2020

Microsoft opens AccountGuard to healthcare providers on the COVID-19 front lines (Source)
TA505 Continues to Infect Networks With SDBbot RAT (Source)
Fingerprint-Exposing Flaw in OnePlus 7 Phone Highlights TEE Issues (Source)
Russian hackers tried to steal San Francisco airport Windows accounts (Source)
TikTok Vulnerability Allows Uploading of Fake Videos To User Accounts (Source)
RagnarLocker ransomware hits EDP energy giant, asks for €10M (Source)
Adobe Fixes ‘Important’ Flaws in ColdFusion, After Effects and Digital Editions (Source)
Exclusive: Google removes 49 Chrome extensions caught stealing crypto-wallet keys (Source)
Microsoft Patches 113 Bugs, 3 Under Active Attack (Source)

Wednesday, 15 April 2020

SCUF Data Breach Exposes 1.1 Million Customer Records (Source)
Lampion malware: what it is, how it works and how to prevent it (Source)
A zero-day exploit for Zoom Windows RCE offered for $500,000 (Source)
Nemty Ransomware shuts down public RaaS operation, goes private (Source)
Malicious Google Web Extensions Harvest Cryptowallet Secrets (Source)
Taxpayers Targeted With Improved NetWire RAT Variant (Source)

Thursday, 16 April 2020

Over 700 Malicious Typosquatted Libraries Found On RubyGems Repository (Source)
Windows Defender broken by recent updates, how to fix (Source)
Gmail blocked 18M COVID-19-themed phishing emails in a week (Source)
Hackers steal WiFi passwords using upgraded Agent Tesla malware (Source)
Poorly Secured Docker Image Comes Under Rapid Attack (Source)
The secret behind “unkillable” Android backdoor called xHelper has been revealed (Source)

Friday, 17 April 2020

Academics steal data from air-gapped systems using PC fan vibrations (Source)
Details of 20 million Aptoide app store users leaked on hacking forum (Source)
Critical bug in Google Chrome – get your update now (Source)
GitHub accounts stolen in ongoing phishing attacks (Source)