New mobile malware designed to spy on calls, texts and other communications targets Android users through a fake application chat.
Smartphones are a favorite target for cyber-spy hackers, not only because the devices contain huge amounts of information, but also because users always have them with them.
Researchers first discovered the threat in May of this year, after detecting a fake Google ad and a chat app called Chatrious. However, shortly after its discovery, the site that hosted it APK, disappeared.
He returned in October, this time hosting a new malicious application called Apex App. Like Chatrious, the new application is the showcase of malicious CallerSpy software.
Although advertised as a chat application, CallerSpy applications do not contain chat features. They are described as "full of espionage".
Once downloaded and launched, it will connect to one command-and-control server from which malware receives commands.
Malicious features of CallerSpy include the collection of all files call logging, text messages, contacts list, and files on the device, the ability to use the phone's microphone to record audio as well as capture snapshots of user activity. All information is uploaded to hackers.
The malicious website that hosts the CallerSpy malware is designed to resemble Google, which contains copyright information. A quick inspection of the address, of course URL indicates that there is an "O" in the Google domain more than it should. However, in some mobile browsers, this information is not always displayed. The domain was registered in February, but there is no indication of who is responsible for its creation.
Although so far, CallerSpy files have been designed to target Android, the false chat application download design indicates that there are plans to build versions for Apple and Windows devices, which may indicate that a much larger campaign is planned in the future.
Researchers recommend installing security software on phones to protect against attacks while users themselves have to watch what they download while keeping their device patched and up to date.
How useful was this post?
Average rating / 5. Vote count:
No votes so far! Be the first to rate this post.