"Mobile Malware Campaign Uses Lures Tied to COVID-19, HHS Warns"

A recent alert from the Health Sector Cybersecurity Coordination Center (HC3) of the Department of Health and Human Services (HHS) brings attention to Medusa, also known as TangleBot, which is a malware variant spreading via SMS and targeting Android devices in the U.S. and Canada by taking advantage of the COVID-19 pandemic. Medusa has a wide range of access to mobile devices, allowing it to collect data and install additional malware. An analysis of the malware showed that it compromises the security of the victim's Android device and configures the system to move sensitive data to attacker-controlled systems. The malware has several levels of obfuscation and control over functions such as contacts, call logs, Internet access, the camera, microphone, and more. This article continues to discuss the Medusa malware variant and how the threat actors are using the pandemic to spread it.  

SC Magazine reports "Mobile Malware Campaign Uses Lures Tied to COVID-19, HHS Warns"