Malware

Threat researchers discovered multiple Google Play listings for dropper apps which installed the infamous mobile banking trojan Sharkbot.

The Lookout Threat Intel team's recent discovery of Hermit, a mobile surveillanceware tool, shows how mobile surveillanceware could adversely affect enterprise organizations

CISA recently announced several exploitable mobile vulnerabilities that can affect both Android and iOS devices. They vary in severity and can be deployed in several ways.

Can a Secure Web Gateway help secure my business’ data and workforce? Secure Web Gateway (SWG) protects web surfing users by filtering malware.

Phishing attacks are becoming an increasingly common avenue for threat actors to deploy malware and ransomware.

Researchers at the Lookout Threat Lab have identified a new rooting malware distributed on Google Play, Amazon Appstore and the Samsung Galaxy Store.

The Alien mobile malware, which is a variant of Cerberus, joins the likes of Eventbot, Cerberus, and Anubis as well-known and highly customizable banking malware.

This one-page threat guidance provides insight into the newly-discovered Predator spyware, which was discovered alongside Pegasus on two Egyptians' phones.

Security researchers at the Lookout Threat Lab have identified a new rooting malware distributed on Google Play, Amazon Appstore and the Samsung Galaxy Store.

Because they now sit at the intersection of your work and personal lives, mobile devices are with you from the moment you wake up to when you go to sleep.

As more organization pivot to remote work, learn why proactive mobile embedded app defense is a must-have for financial services.

Lookout analyzed its mobile security data to provide a view into the current mobile security risks facing US Federal government mobile users.

Veteran of the cybersecurity industry, Joseph Davis of Microsoft, explains how spyware came to be, its implications and how you can protect yourself and your organization

A data leak of more than 50,000 phone numbers revealed a list of identified persons of interest by clients of NSO, developers of the Pegasus malware, since 2016.

Kaseya recently fell victim to a ransomware attack executed by the REvil group. In all between 800 and 1,500 businesses down the chain were affected by this attack.

Lookout Researchers have discovered almost 200 Android apps, including 25 on the Play Store, scamming cryptocurrency investors out of money.

The Colonial Pipeline ransomware attack demonstrated how cybercrime groups exploit diminishing visibility, legacy security systems, and mobile devices to extort money.

Security on mobile devices is often overlooked, creating a gap in your security architecture. Don't overlook the most used endpoint.

Traditional endpoint protection does not protect all of your endpoints, learn how Lookout protects against app, device, and network threats.

A customizable Malware-as-a-Service banking trojan delivered through any app with messaging capabilities.

Android surveilllanceware developed by a pro-India APT tageting Pakistani official.

In this episode, Tim LeMaster, Director of Systems Engineering at Lookout, discusses SolarWinds and how a Zero Trust security model can safeguard your infrastructure.

Solarwinds showed the effectiveness of a software supply chain attack, an effective tactic for compromising a high volume of devices with a single infected software update.

Embed security into the apps your patients and staff use to protect your practice.

Secure your cloud collaboration and productivity with full visibility and control.

A blackmail and sextortion campaign targeting individual users on both iOS and Android

The rise in mobile device use has facilitated an increase in mobile security concerns.

This is a variant of an existing mobile ransomware with novel techniques and behavior on Android devices.

The advertising SDK by Mintegral used in iOS apps had some risky permissions that could violate end-user privacy.

Updated version of the TikTok Threat Guidance more up-to-date information and reviewed context around the current situation with where this app is sending user data.

This new variant of the banking malware Cerberus has been observed being distributed via a breached MDM.

There were over 70 Android apps associated with this long-running malware campaign.

LightSpy was the malware behind the Poisoned News watering hole campaign on iOS.

This attackers behind this remote access trojan (RAT) attack used social engineering to target Israeli Defense Force (IDF) soldiers.

Lookout is constantly discovering and researching new threats to protect and advise our customers

Get visibility into the full spectrum of mobile risk to protect intellectual property and increase productivity.

Securing corporate data from these risks shouldn’t be a roadblock for productivity, but rather a set of practices to ensure employees aren’t putting their organizations at risk.

Web and mobile apps have become a key part of everyday life to manage everything from booking travel to handling finances. This rise has also led to more attacks.

We secure mobility for the world's largest enterprises, the highest levels of government, hundreds of thousands of small businesses, and tens of millions of individuals.

See surprising mobile device trends among federal employees and learn how to implement post-perimeter security at your organization.

Amazon's CEO was targeted by a mobile advanced persistent threat (APT) that enabled the attacker to steal data with a compromised video file sent to the victim via WhatsApp.

Enabling secure productivity of your mobile workforces.

Small businesses are increasingly relying on Microsoft Office 365 to enable their employees to work how they want and where they want. However, this comes with a big risk.

Financial services industry employees and customers rely on tablets and smartphones and threat actors are constantly finding ways to exploit them to access cloud infrastructure.

Smartphone apps have become an integral part of everyday life. Proactively protect your customers’ data and account credentials on mobile with Lookout App Defense.

Key security goals set by the Regulatory Technical Standards for PSD2 are the ability to detect malware and provide a security to mitigate risk on user devices.

As the leading provider of mobile security, Lookout integrates with tools that help organizations benefit from unified security, visibility, and management of endpoints.

Organizations are increasingly adopting mobile management strategies for mobile, but in today’s evolving threat landscape it’s more challenging than ever to stay secure.

ToTok is a very popular chat app used in the Middle East that was discovered to be spying on all its users despite not having any nefarious permissions built into the app.

This malware can deploy second-stage malware payloads which can steal user login information, keylog, deploy ransomware, and bypass MFA with SMS interception.

AzSpy appeared to be part of a commercial Android spy platform, known as FullSpy, with a user login page to monitor infected devices.

ArmaSpy was a surveillance family, which appears to have been targeting Iranian users since late 2016 with new samples discovered as recently as mid-2019

Phishing AI discovered this campaign targeting Verizon employees on mobile devices.

Joker is a widely-used trojan that continues to appear in apps on the Google Play Store.

Monokle is an advanced and highly-targeted surveillanceware developed by Russian firm STC. It has a number of unique capabilities for stealing data from Android devices

This is a family of applications that infects programs by adding its own components to a target Android Package (APK) without changing its digital signature.

BeiTaAd is a well-obfuscated advertising plugin that forcibly displayed ads on the user’s lock screen, triggered video and audio advertisements even while the phone is asleep.

eSurvAgent is a sophisticated Android surveillanceware agent.

Lookout Security Intelligence has discovered a set of custom Android and iOS surveillanceware tools we’re respectively calling Stealth Mango and Tangelo.

Smartphone apps have become an integral part of everyday life. Almost every company is now investing in mobile apps to deliver innovative services to their customers.

Mobile apps have become an integral part of everyday life. To win consumer engagement, almost every company is investing in mobile apps to deliver services to customers.

Advanced mobile app protection against customer data compromise and fraud.

Dark Caracal Technical Report Executive Summary & Key Findings

Lookout Threat Advisory taps into the massive dataset from Lookout’s global sensor network to give you actionable intelligence on the latest mobile threats and risks.

Get visual, step-by-step instructions on how to determine if you've been affected by Pegasus.

Lookout Mobile Threat Protection is a security solution for your mobile workforce to view and defeat evolving mobile threats.