Incident Response, Malware, TDR

Threat of the month: SVPENG

What is it?

SVPENG is a PC-grade mobile malware that infects users by disguising itself as an Adobe Flash Player update. This malware is capable of launching two different types of attacks.  

How does it work?

In the first attack, the overlay, the malware waits until the mobile user opens a targeted app, likely downloaded from an untrusted site. The application launches as usual, but the malware displays a similar looking user interface on top of it, forcing the victim to unknowingly interact with the malware. The second attack deploys ransomware prompting users to pay a fine before regaining control of the device.

Should I be worried?

Yes, SVPENG is quickly spreading throughout the U.S. and Europe, targeting data that holds banking credentials, credit card data and personal information.

How can I prevent it?

Avoid downloading apps from untrusted sources. Go directly to verified app markets to download all apps.

– Etay Maor, senior fraud prevention strategist, IBM Security Systems 

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.