Android application for data backup is actually malware

Μία Android εφαρμογή που είναι σχεδιασμένη σαν εργαλείο που δημιουργεί αντίγραφα ασφαλείας για να προστατεύει τα of the device, it actually steals information about the phone and the user's activity.malware-behind-android-data-backup-app-1

It's called SocialPath and a version of malware has managed to pass the check and be offered at the official Google Play store for Android.

Google has just been warned by security investigators about its risk by deleting it from its list, but until it was recognized and removed, Google received several clicks to download.

Security researchers who have tracked the occasional malware trafficking campaigns have noticed that almost one 6.000 click, most of which comes from Lebanon (1.715).

The next two positions were από το Σουδάν (1.117) και το Ομάν (666). Οι χρήστες σε χώρες της Ευρωπαϊκής Ένωσης είχαν εξαπατηθεί σε ποσοστό 7% του συνόλου των κλικς.

malware-behind-android-data-backup-app-2

According to Jeremy Linden of Lookout, SocialPath promises to create secure copies of the contact list and informs that the service will soon be extended to photos, videos and other types of files, and also claims to give users access to their data if the device is lost or stolen. If the recipient of the message decides to sign up for the service, he / she is asked to provide the full name, e-mail address, telephone number, country of residence and a personal photo.

This is not the only information sent to their server as the app has features to leak the contact list, messages, full call log which includes phone numbers, the exact time of calls and their duration.

Linden says malware is also capable of making calls to numbers sent by the rogue server, and then deleting call records to hide its activities.

As for the identity of the scammers in this particular case and based on the evidence found in the app's code, Linden believes Arabic-speaking people are hiding. Considering the countries concerned, SocialPath can be a tool s with political purposes, but may well be part of a more advanced phishing scheme with financial motives.

Regardless of its scope, users of devices with Android should only download apps for their devices from trusted sources, avoid third-party stores where the it is not verified, and finally read user comments for any negative reports.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).