Android

now browsing by tag

 
 

When Spies Get Hacked… Hackers Steal Customer Data from Android Spyware Company

When hackers get hacked” should become the tagline of 2018. After several other similar incidents, it is now the turn of an Android spyware maker that advertises its spyware to be used against children and employees. A target of a vigilante hacker, the company known as SpyHuman offers surveillance software for Android devices that enables its users to intercept phone calls, text messages, track GPS locations, read messages on WhatsApp and Facebook, and use the target device’s microphone.

It now appears that a hacker has stolen customer text messages and call metadata from the spyware company. Call metadata includes phone numbers the target devices dialled or received calls from along with their duration and dates. Hackers managed to access over 440,000,000 call details through exploiting a basic security flaw in the website.

advertisement:

nso-pegasusRELATEDControversial Israeli Spyware Firm Robbed by Its Own Employee Who Tried Selling Code for $50 Million!

“These spy apps should be out of market, most people spy on girls and [their] data image […] always sensitive,” the hacker wrote in a message that was obtained by Motherboard. “No one have rights to do that and same these apps and provider making money by doing this.”

While SpyHuman sells its spyware as a tool to monitor children and employees, it’s mostly used to illegally spy on partners and spouses without their consent. “Several review websites and social media posts do push the app for such purposes, and archives of particular SpyHuman pages include phrases such as ‘know if your partner is cheating on you,’ and suggests monitoring your husband’s texts in case he is having an affair,” the publication reports.

The company gave the following (non)explanation when asked about how it makes sure its software isn’t being used for illegal surveillance:

staff-surveillance-2RELATEDMicrosoft Exposes FinFisher Gov Spyware – Says Windows Defender ATP Can Now Detect the Notorious Spyware

“As a precaution, at an initial stage of our app installation, we always ask users that for what purposes they are installing this app in the target device. If they select child or employee monitoring then our app stays hidden and operate in stealth mode. Otherwise, it will create visible Icon so that one can know that such app is installed on his/her devices.”

As is apparent, since its users can always select a child or an employee – which in itself raises several questions – they don’t necessarily have to reveal if they are using the product for spying on people, mostly partners, without their consent.

– If you are a victim of spyware or technology-facilitated abuse, this is a very comprehensive resource list offering guidelines and help.

The post When Spies Get Hacked… Hackers Steal Customer Data from Android Spyware Company appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

North Korea #Hackers Use #Android Apps With #Malware To #Harass #Defectors

North Korean hackers are using Android apps with malware to target the country’s defectors, according to researchers from security software firm McAfee.

The Android apps, which were detected as Google Play Store malware, go beyond the usual unwanted advertisements and attempted scams. The apps track and blackmail the targets for escaping North Korea.

North Korea Launches Targeted Malware Attacks
A North Korea hacking team was recently able to upload three Android apps to the Google Play Store that targeted people who escaped from the authoritarian country, according to a report from McAfee.

The team behind the attacks was Sun Team, instead of the more infamous Lazarus, which was previously linked to the WannaCry ransomware from a year ago. This was not Sun Team’s first attempt at this kind of attack though. In January, McAfee spotted the same attempt, but it required the targets go out of their way and download the apps with malware outside of the Google Play Store.

The malware campaign, nicknamed RedDawn, involved the hackers contacting the targets through Facebook to invite them to install seemingly innocent apps from the Google Play Store. Compared to the first attempt, the new method of attack may have been more convincing, as the apps were downloaded from the official app store for Android devices.

Google Play Store Malware Harasses North Korea Defectors
The three apps were uploaded to the Google Play Store between January and March. The first app was Food Ingredients Info, which offered information on food, true to its name. The second and third apps were FastAppLock and Fast AppLock Free, which functioned as security tools.

The apps, however, were laced with malware. Once installed, the malware used Dropbox and Yandex to upload data and issue commands. The hackers were able to steal their targets’ personal data, which could then be used to track, threaten, and blackmail them.

It is unclear, however, how effective the apps were. They have now been removed from the Google Play Store after McAfee contacted Google, but only after recording about 100 downloads. McAfee said that it was able to identify the malware early on, and that there have been no public reports of being infected with them.

Being careful in downloading apps does not only apply to North Korean defectors though. Targeted malware attacks may come in any form, so users will need to be very cautious with the apps that they install, even if they come from the Google Play Store.

advertisement:

The post North Korea #Hackers Use #Android Apps With #Malware To #Harass #Defectors appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hackers can steal data off your Android phone via Bluetooth

Hackers can steal data off your Android phone via BluetoothAs always with new security issues affecting mobile devices, it’s Android users who have to worry about the newly discovered Bluetooth hack. Windows and iOS phones are protected against it but only if you’ve installed the September 12th security patch on Windows or run iOS 9.3.5 or laters. A security… View full post on National […] View full post on AmIHackerProof.com | Can You Be Hacked?

App lets hackers develop Android ransomware without code

more information on sonyhack from leading cyber security expertsSource: National Cyber Security – Produced By Gregory Evans Creating malware isn’t rocket science anymore. Unlike those old-school hackers, who had to write their own malicious code and run them to hack someone’s computer, all the new hackers need is an Android device. Yes, you’ve read it right. Now, there’s a new Android app that […] View full post on AmIHackerProof.com | Can You Be Hacked?

Hackers threaten to send Android users’ private photos and messages to all their friends and family

Source: National Cyber Security – Produced By Gregory Evans

Thousands of Android users are being held to ransom by a new strain of malware known as LeakerLocker. The so-called ransomware is being used by hackers to extort victims by threatening to leak their personal information to all their contacts unless a ransom is paid. This information could potentially include…

The post Hackers threaten to send Android users’ private photos and messages to all their friends and family appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Google Bolsters Security Features in WebView for Android

Source: National Cyber Security – Produced By Gregory Evans

Google has added a couple of security updates to the WebView feature in Android for displaying web content inside a mobile application. The updates are designed to better protect mobile applications from browser-borne threats and will become available in the WebView that is integrated with Android O, the next version…

The post Google Bolsters Security Features in WebView for Android appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hackers have developed a WannaCry copycat that targets Android smartphones

more information on sonyhack from leading cyber security expertsSource: National Cyber Security – Produced By Gregory Evans Security experts are warning about a new form of ransomware that is being used to target Android smartphones. The ransomware, dubbed WannaLocker, was discovered by Avast, and has been targeting Android users in China. The creators of the ransomware are said to have taken inspiration from […] View full post on AmIHackerProof.com | Can You Be Hacked?

Google will pay hackers $200,000 for finding bug in Android

Source: National Cyber Security – Produced By Gregory Evans

Google will pay hackers $200,000 for finding bug in Android

Alphabet’s Google will start paying hackers up to $200,000 who report vulnerabilities in its mobile operating system Android. Android is known for its poor security issues, especially with the older versions of the OS. Although, the latest build of Android are vastly secure than what Google was putting out on…

The post Google will pay hackers $200,000 for finding bug in Android appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Russian hackers were planning to hit Europe with fake Android banking apps

Source: National Cyber Security – Produced By Gregory Evans

Russian hackers were planning to hit Europe with fake Android banking apps

Hackers in Russia, after infecting over a million Android devices with malware to siphon money using fake banking apps, were planning a major attack on European bank customers. The group, known as ‘Cron’ after their malware, is in custody now. The hacking group tricked Android users into downloading malware via fake mobile banking applications, as well as pornography and e-commerce …

The post Russian hackers were planning to hit Europe with fake Android banking apps appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures