VPN user data leaks, new Android malware and other cybersecurity developments

We have collected the most important news from the world of cybersecurity for the week.

• Experts have discoveredAndroid-oriented malware that steals the data of cryptocurrency holders.
• Cloudflare spoke about a record DDoS attack.
• BeanVPN user data leaked to the network.

Researchers have found Android malware that bypasses 2FA and steals data from cryptocurrency owners 

F5 Labs specialists have discovered a new variant of the MaliBot malware that targets Android users and is capable of bypassing two-factor authentication and stealing credentials. 

MaliBot masquerades as mining appsMining X and The CryptoApp. The malware aims to steal data from crypto wallets and bank accounts, personal information, and also specializes in attacks on financial institutions in Italy and Spain.

The servers that control MaliBot are located in Russia and appear to be the same servers that were used to distribute the Sality malware, F5 Labs noted. 

Media: US authorities increased funding for VPN developers to help Russian residents bypass censorship

Since the beginning of the war in Ukraine, the US government has increased funding for three VPN companies to help Russians bypass censorship and gain access to the media, Reuters writes.

According to sources, we are talking about nthLink companies,Psiphon and Lantern. Since the beginning of the war and the subsequent large-scale blocking of social networks, services and media in Russia, the share of VPN users has increased significantly, the newspaper notes. The increased funding is aimed at helping companies deal with the influx of users from the Russian Federation.

Earlier, the US State Department called for Russia not to be disconnected from the Internet so that the country's residents could receive independent information. 

Russia without internet. We tell you how to bypass censorship and blocking

Cloudflare repelled a record DDoS attack

Cloudflare said that its specialists coped with a record DDoS attack with a peak rate of 26 million requests per second.

One of Cloudflare's clients using a free plan was attacked. Behind it was a botnet consisting of 5067 devices.

New Chrome extension will hide users' location better than VPN

The Vytal extension for the Google Chrome browser will not allow the use of the API for location discovery, writes Bleeping Computer.

The publication notes that even with the VPN turned onit is still possible to determine the user's geolocation, for example, through the use of a JavaScript function to request information directly from the browser.

Vytal allows you to choose an arbitrary location from a list of pre-filled places, change the data according to the IP address or your own geolocation.

The head of Apple was concerned about the consequences of the loss of privacy of Internet users

Apple CEO Tim Cook told Time,that he is concerned that people will start to think and behave differently as they lose their sense of privacy in a world where digital devices and technology increasingly monitor their actions.

“I am very afraid of losing privacy.When we feel like we are constantly being watched, our behavior changes. We are starting to do less, think less and change the way we think. In a world where we hold ourselves back, society changes a lot,” he said.

BeanVPN user data leaked to the network

Experts have discovered a database with information about users of the free VPN service BeanVPN.

The 18.5 GB database contains more than 25 million records, including device IDs, IP addresses, and other data.

Media: Cisco finally leaves the Russian Federation

Network equipment manufacturer Cisco will finally leave the Russian market, CNews writes citing sources.

According to media reports, the company is preparing to announce this at the end of June, after which it will fire all employees. Cisco will finally complete its operations in the Russian Federation by the beginning of July. 

Earlier, the largest manufacturer and supplier of hardware and software, IBM, announced the complete cessation of work in Russia due to its invasion of Ukraine.

Also on ForkLog:

• A vulnerability has been discovered in older versions of the MetaMask wallet.
• Binance will limit deposits and withdrawals of Litecoin using the privacy feature.
• The hacker stole about $1.2 million in an attack on the Inverse Finance landing project.

What to read on the weekend?

In the face of increasing blocking and censorship, VPN services can help realize the right to free access to information. ForkLog has compiled a short guide to the most popular:

Through the Iron Curtain: Which VPN Service to Choose

Read ForkLog bitcoin news in our Telegram - cryptocurrency news, courses and analytics.