Security researchers at Arbor Networks have discovered a malicious application in Google's cloud-based application development environment, AppEngine, the security firm said in a blog post on Monday. The malicious application was acting as a command-and-control hub, used by cybercriminals to issue download instructions to zombie computers that make up a botnet, researchers said. Google shut down the rogue application shortly after being notified about it. — AM
BleepingComputer reports that several U.S. financial institutions and numerous cryptocurrency apps are having their users mostly targeted by an expanded Xenomorph malware campaign leveraging an updated version of the Android banking trojan that also set sights on users in Canada, Italy, Spain, Belgium, and Portugal.