Cyfirma researchers have found a trojan called FireScam masked as a fake Telegram Premium app, distributed via a deceptive Github.io site impersonating the RuStore, a popular Russian app store. This Android infostealer malware seeks out sensitive Android data such as notifications, messages, and app data, which is funneled to a Firebase Realtime Database endpoint. Additionally, FireScam monitors Android device activities on a wide scale and can maintain control over affected devices.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force