The security company Lookout has discovered at least 500 applications Android που κυκλοφορούσαν μέσω του Google Play Store και διέθεταν το Igexin, ένα software development kit. Το SDK επέτρεπε στους απατεώνες να αναπτύξουν κακόβουλα programs to spy on users.
Lookout explains that these apps, whose names it did not disclose, numbered more than 100 millions λήψεις στο Google Play Store και ανήκαν σε πολύ δημοφιλείς κατηγορίες, όπως τα παιχνίδια που απευθύνονται σε εφήβους, εφαρμογές καιρού, Διαδικτυακά ραδιόφωνα, επεξεργαστές φωτογραφιών, ταξιδιωτικές εφαρμογές και emoji.
Google seems to have already removed these apps from the Play Store, which means that there is no longer any risk (from this software). Those who have installed applications that look suspicious should scan them Appliances with some reliable security software.
Η χρήση ενός SDK για το σερβίρισμα κακόβουλων εφαρμογών σε συσκευές Android είναι μια νέα τακτική που επιτρέπει στους κακόβουλους προγραμματιστές να αναπτύσσουν malware σε τηλέφωνα και tablets χρησιμοποιώντας “καθαρές εφαρμογές.”
Lookout reports that the Igexin SDK provides spy capabilities and that developers may not have known it.
“It's likely that many app developers were unaware that their app was leaking personal information from their customers' devices as a result of integrating Igexin's ad SDK. It took a deep analysis of the behavior of the apps and the SDK from them researchers us to make this discovery. The functionality is not only obvious, but can be modified at any time from a remote server,” Lookout researchers report.