Snail Mail Cyber Attacks hits Android users and 23andme data security concerns

Snail Mail Cyberattacks Raise Alarm Among Android Users

The term “Snail Mail” typically refers to traditional physical mail, which is slower than its digital counterpart, email. However, this outdated method of communication is now being exploited by cybercriminals to spread malware to Android users. This new threat was recently highlighted by the Swiss National Cyber Security Center (NCSC), which issued a warning to the public about the growing danger.

According to reports, the attack involves fake physical letters that appear to promote the “MeteoSwiss” app, an official app designed to alert users of natural disasters. Instead of a legitimate app, however, the attackers have created a counterfeit version that includes a QR code. When scanned, the QR code leads to a malware download, targeting Android smartphones.

The Swiss Federal Office for Civil Protection also warned about this scam, revealing that the fake app mimics the Alert-Swiss app. The malware, identified as “Coper,” is capable of stealing sensitive information, such as banking credentials, and transmitting it to foreign servers. Experts strongly advise users never to scan QR codes from unsolicited physical mail or click on links that might lead to malicious websites.

23andMe Data Breach Raises Security Concerns and Potential Bankruptcy Fears

Genetic testing company 23andMe is under fire after revealing that the personal data of over 6.4 million customers may have been compromised in a cyberattack. The company, which has been facing rumors of impending bankruptcy, has sparked further concern among users about the safety of their sensitive information, especially if it were to be sold to third parties.

In its privacy policy, 23andMe has warned that in the event of bankruptcy, reorganization, or a merger, the company could potentially sell or share user data, including genetic information. This has left many customers anxious about their privacy and the fate of their data if the company folds or is sold.

Adding to the controversy, 23andMe announced that it would compensate qualifying customers with $10,000, provided they can prove they suffered hardship as a result of the breach. The company disclosed in April 2023 that more than half of its user base—around 14 million people—was affected by the breach, with some customers claiming their data was found for sale on the dark web. As a result, 23andMe is now facing class-action lawsuits, particularly from Chinese and Ashkenazi Jewish customers, who have presented evidence of the data being sold illegally.

Ad
Naveen Goud
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display