SpyDealer: steals social accounts

SpyDealer: A malware for newly discovered can steal data from over 40 popular apps including Facebook, WhatsApp, Skype and Firefox. The malware has reportedly been actively engaged in this illegal activity for nearly two years.

It was named SpyDealer, by its investigators Palo Alto Networks who discovered it, and allegedly collects accounts and personal data from its victims. Included in the data , messages, contacts, call history, information from the wi-fi that has been connected, and even the geographical location of the device.SpyDealer

Malicious software allows fraudsters to record phone calls, videos, and audio, capture images with front and back cameras, and download sensitive information screenshots.

It is described as a very advanced form of malware for Android. SpyDealer is able to open a backdoor on devices, exploiting a commercially available Android app to root the victim device and acquire root privileges.

Samples of the malware analyzed by the researchers suggest that the malware re τα root exploits που χρησιμοποιεί η εμπορική εφαρμογή "Baidu Easy Root" για να αποκτήσει προνόμια root.

SpyDealer is able to receive instructions from a server και ελέγχου - καθώς και εντολές μέσω text, which allows fraudsters to remotely control the infected device.

SpyDealer is totally effective on Android devices in versions from 2,2 to 4,4 as its root tool only supports those versions of the mobile operating system.

Even though these versions of Android are ancient - Android 2.2 was first released in May 2010 and Android 4.4 was released in late 2013 - researchers report that a quarter of Android devices still run these versions.

So with two billion active Android devices, this means that 500 million Android devices are vulnerable to this malware.

Researchers are not sure how the devices are infected with SpyDealer, but data shows that Chinese users are infected through hacked wireless networks.

Also note that those behind SpyDealer collect data and accounts for over a year and a half, since the oldest sample of malware dates back to October of 2015.

Palo Alto Networks has already reported the threat to Google, which immediately created new protections through Google Play Protect.

According to the researchers, SpyDealer attempts to steal data from the following applications: WeChat, Facebook, WhatsApp, Skype, Line, Viber, QQ, Tango, Telegram, Sina Weibo, Tencent Weibo, Android Native Browser, Taobao and Baidu Net Disk.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.087 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).