Until recently, dangerous and infected applications were usually located in the app store Play Store of Android of devices. However, it seems like now, online Criminals have spread their nets on and on App Store of Apple, where they have infected Clickware applications that can steal their users' personal data.
According to the security company Wandera, there are 17 apps on the Apple App Store, containing a clicker trojan to perform malicious actions on the background of the device.
Below is a list of 17 infected applications that you should uninstall immediately if you have them on your device:
- RTO Vehicle Information
- EMI Calculator & Loan Planner
- File Manager - Documents
- Smart GPS Speedometer
- CrickOne - Live Cricket Scores
- Daily Fitness - Yoga Poses
- FM Radio - Internet Radio
- My Train Info - IRCTC & PNR
- Around Me Place Finder
- Easy Contacts Backup Manager
- Ramadan Times 2019
- Restaurant Finder - Find Food
- BMI Calculator - BMR Calc
- Dual Accounts
- Video Editor - Mute Video
- Islamic World - Qibla
- Smart Video Compressor
And 17 infected applications, published by an Indian developer called AppAspect Technologies Pvt. Ltd.
How can they affect your device?
These applications exchange commands with a command and control server for targeted advertising. One of the disadvantages of communicating with one C & C server is that it allows applications to bypass security controls as a direct communication channel with the intruder is created. C&C channels are the ones most often used to distribute targeted ads and payloads as they create a "backdoor" in practice.
These applications communicate with a C&C server that is developing very strong encryption, which the researchers could not break.
Researchers found that infected applications were gathering information like its model device, the country of residence of the victim and other details of configuration.
What did Apple respond to?
As soon as Wandera researchers discovered the infected applications, they reported it to Apple. In response, Apple has deleted all apps from the App Store, with the exception of two - My Train Info - IRCTC & PNR and Easy Contacts Backup Manager.
How useful was this post?
No votes so far! Be the first to rate this post.
The author allows you to copy his / her text only if you report the source (SecNews.gr), as an e-mail address (Live URL) of the article.
Updated on by
The B2B payment service, Billtrust, has been the victim of ransomware attack
Greek
Arabic
Chinese (Simplified)
English
French
German
Italian
Russian
Comment Policy:
SecNews.gr does not immediately post comments. Malicious comments, comments that include ads, or comments with insults are deleted without any warning. We do not endorse the views expressed by our readers.