Magecart Strikes Again
Ticketmaster, British Airways, and Newegg have all been compromised. Who’s next? Read our research to see how we discovered the breaches.
IDG Connect: 2017 State of Enterprise Digital Defense Report
Findings quantify the security management gap and business impact of external web, social, and mobile threats.
Get the Research Report
Frost & Sullivan: The Digital Threat Management Platform Advantage
The material benefits of a platform-based approach to security outside the firewall.
Read the Report
2018 Holiday Shopping Season Threat Activity: A Snapshot
The 2018 holiday shopping season was the largest ever for online retailers, but threat actors filled their pockets, too.
So what did the threat activity around this shopping frenzy look like?
Rackspace Accelerates External Digital Threat Investigation with RiskIQ PassiveTotal
Download Case Study
EMA Radar™ Q4 2017 Report
RiskIQ ranked a technology and value leader in digital threat intelligence management.
Get the Analyst Report
January 24, 2018
Hackers using ‘lawless’ blacklisted apps with intentions to steal money and personal data
– Digital threat experts RiskIQ analyzed 18,408 apps across 20 app stores
San Francisco – Jan. 24, 2018 – The world’s top app stores are hosting 661 blacklisted Bitcoin apps, which leave users open to hackers, a new investigation by digital threat management leader RiskIQ today reveals.
RiskIQ analyzed 18,408 apps across 20 app stores – including Apple, Google Play, SameAPK, and APKPlz.
Monitoring 10 of the popular Bitcoin exchanges in the app title, it found a staggering 661 to be blacklisted by official cybersecurity vendors (3.6 percent of total) – but still available for download by users.
The top stores guilty of hosting these potentially dangerous apps were Google Play (272), ApkFiles (54) and 9Apps (52).
RiskIQ’s research showed almost 3 percent of apps with “Bitcoin exchange” in the title were blacklisted, as well as 2.6 percent using “Bitcoin wallet” and 2.2 percent listed as “cryptocurrency.”
Hackers behind the blacklisted apps, which have been blacklisted by one or more cybersecurity vendors, can trick users into handing over large sums of money or personal details for financial gain.
The rise in unofficial and potentially malicious apps across multiple app stores will alarm potential investors looking to buy into Bitcoin.
Fabian Libeau, EMEA VP of RiskIQ, warned anybody considering downloading such software to be extremely cautious and to research each app.
He said, “We are seeing threat actors around the world exploiting what is already a hostile currency in a lawless digital world. Before handing over any cash or personal data, investors should carry out thorough research into the exchange and wallet apps they intend to use. By checking the developer’s name, user reviews and the number of app downloads, investors can measure the validity of an app and be more confident in their choice.”
RiskIQ is the leader in digital threat management, providing the most comprehensive discovery, intelligence and mitigation of threats associated with an organization’s digital presence. With more than 70 percent of attacks originating outside the firewall, RiskIQ allows enterprises to gain unified insight and control over web, social and mobile exposures. Trusted by thousands of security analysts, RiskIQ’s platform combines advanced internet data reconnaissance and analytics to expedite investigations, understand digital attack surfaces, assess risk and take action to protect business, brand, and customers. Based in San Francisco, the company is backed by Summit Partners, Battery Ventures, Georgian Partners, and MassMutual Ventures.
Visit https://www.riskiq.com or follow us on Twitter. Try RiskIQ Community Edition for free by visiting https://www.riskiq.com/community/.
© 2018 RiskIQ, Inc. All rights reserved. RiskIQ is a registered trademark of RiskIQ, Inc. in the United States and other countries. All other trademarks contained herein are property of their respective owners.
Montner Tech PR