New Android Malware CherryBlos Utilizing OCR to Steal Sensitive Data
A new Android malware strain called CherryBlos has been observed making use of optical character recognition (OCR) techniques to gather sensitive data stored in pictures
Trend Micro is a cybersecurity company whose research and products address malware, vulnerabilities, cloud risks, and cyberattacks.
Search across headline titles and summaries.
Background for this topic.
Trend Micro is a cybersecurity vendor whose products protect endpoints, email, networks, cloud workloads, and consumer devices. It also publishes threat intelligence and vulnerability research. News under this tag may therefore concern security software vulnerabilities, product updates, malware campaigns, or research that helps defenders identify and investigate attacks.
For security teams, the vendor’s agents and management consoles can have broad access to systems, so flaws in them may enable tampering, privilege escalation, or evasion of detection; reviewing advisories and applying supported updates is important. Detection rules and threat reports should be tested against internal telemetry before being used for blocking or incident response. Organizations using hosted services should also assess what endpoint or network data is collected, how long it is retained, who can access it, and whether those practices meet privacy and contractual requirements.
A new Android malware strain called CherryBlos has been observed making use of optical character recognition (OCR) techniques to gather sensitive data stored in pictures
Trend Micro’s Mobile Application Reputation Service (MARS) team discovered two new related Android malware families involved in cryptocurrency-mining and financially-motivated scam campaigns targeting Android users.