Rabitə və İnformasiya Texnologiyaları Nazirliyinin elektron xəbər xidməti

New Android Malware Lets Hackers Spy on Users, Steal Their Data


A new form of Android malware has been spotted online, with some 25 percent of devices running Google’s mobile operating system said to be fully exposed.
 
SpyDealer is a Trojan detected by the researchers over at Palo Alto Networks, who revealed that once an Android device is infected, a hacker can do basically anything he wants, including spying on users and stealing personal data and from apps like Facebook, Skype, and WhatsApp.
 
While it’s not yet clear how it manages to infect a device, security experts say SpyDealer is certainly not bundled into Google Play Store apps, so there’s a good chance it’s injected in other popular apps available in third-party stores.
 
Once it compromises a device, SpyDealer attempts to gain root privileges with exploits in an app called Baidu Easy Root, which could basically provide attackers with full control. The Trojan supports remote controlling via UDP, TCP, and SMS, and can steal data from a wide variety of applications, including here WhatsApp, Facebook, Skype, Telegram, Firefox, and others.
 
But that’s not all. SpyDealer can also extract personal information from the compromised Android device, including SMS conversations, phone numbers, accounts, call history, and even location. Attackers with remote control over the device can also take photos with the camera, record phone calls, take screenshots, and even listen to what’s happening near the phone.
 
Palo Alto Networks says devices running Android version 2.2 and 4.4 are fully exposed to SpyDealer, but newer versions of the operating system are also vulnerable, though not the same amount of data can be accessed because of the security improvements that are available. Actions that require higher privileges on newer Android versions are blocked, but security researchers say the malware can “steal significant amount of information.”
 
SpyDealer appears to be spreading as we speak, and security researchers have already discovered more than 1,000 samples, with the oldest one being dated October 2015.





12/07/17    Çap et