Kaspersky has identified thousands of low-cost Android smartphones sold online that come with preinstalled malware programmed to steal cryptocurrency details. The devices are infected with a version of the Triada Trojan, capable of stealing login details and intercepting texts. The malware was also found to be able to replace wallet addresses, enabling the theft of multiple cryptocurrencies, with Kaspersky identifying around $270k in stolen funds so far. The Trojans are present at the firmware level, meaning some retailers may unwittingly be selling the compromised phones.
Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is
