Hi-Tech

Google Play apps were stealing texts and secretly recording calls

28/07/2017
Google Play apps were stealing texts and secretly recording calls

All the apps had unassuming names like "Cleaner", "Backup", or "Sound Recorder" Google said.

Google Play Protect detected Lipizzan in 20 different apps that had been distributed in a targeted fashion to fewer than 100 devices.

The malware, dubbed Lipizzan, includes references in its code to Israeli start-up Equus Technologies, which claims on a sparse LinkedIn page to develop "tailor made innovative solutions for law enforcement, intelligence agencies, and national security organizations".

Google recently took down 20 professionally developed malicious Android apps that were capable of spying on a target's location and messages.

"Upon installation, Lipizzan would download and load a second "license verification" stage, which would survey the infected device and validate certain abort criteria".

If the device gets the green light the malware will root it with known exploits and exfiltrate data to a C&C server, Google explained.

IN officer dies after shot multiple times
That person and a second occupant, who was injured in the crash, were taken the hospital and were being held there by the police. A Southport Police Department officer has been shot along Madison Avenue in a residential area in southern Marion County.

In that second stage, it could take screenshots and photos, steal user data on contacts and files, record calls, monitor location, and even record from the device microphone.

The data collected was able to be accessed from apps including Gmail, Hangouts, LinkedIn, Skype, and Snapchat, as well as collecting messages sent and received by Whatsapp, Telegram, and Viber, which encrypt data in an attempt to make it hard for attackers to intercept messages while their are travelling to their destination.

The spyware was able to bypass Google's Bouncer security system by splitting into two stages.

Google blocked the first set of Lipizzan apps, but even then new versions were uploaded within a week of the takedown; this time created to look like apps including notepads, sound recorders and alarm managers. The new apps were uploaded within a week of the takedown, showing that the authors have a method of easily changing the branding of the implant apps. It had caught hold of one such malware and dealt with it before it could cause major havoc and as a subsequent result has also launched the Google Play protect security feature to insulate users from any such nasty malwares.

Back in April, researchers at Google discovered an Android malware, called Chrysaor, that could give an attacker remote control of the infected device.

The availability of multiple app stores to Android users, and the less stringent app review process, have contributed to the rise in malware in Google's mobile ecosystem.

Related News:


Most liked

The Sims 4 Will Be Releasing On Console In November
It comes with additional hot tubs and a number of outdoor decor items for creating an oasis in your back garden. EA has also promised regular game updates following the console release, too.

BT Takes Fresh Hit Over Italian Accounting Scandal
BT's Gavin Patterson: Settlement 'is disappointing but it is the best possible outcome for shareholders'. BT said the £225m payout represents a "full and final settlement in respect of these issues".

Amazon plows ahead with high sales and spending; profit plunges
However, he said, "We really think it will be a big boost for us as we expand our grocery and consumables offering". Analysts had expected operating income in the third quarter of $931 million, according to FactSet StreetAccount.

Chris Messina's Danny Will Return For 'The Mindy Project' Season 6
Although the actress has confirmed her pregnancy, she is yet to reveal who the father of the child is. "The episode is a little bit about mom shaming and that's cool".

Wisconsin Economist Questions Foxconn Deal
Walker said Wednesday that Foxconn workers in Wisconsin will make an average salary of more than $53,000, plus benefits. Foxconn would also be allowed to skip another $150 million in sales tax on material purchases like building goods.

Bravo waiting for Sanchez 'with open arms' at Manchester City
The Gunners managed to end the season on a high note after a 2-1 win against Premier League champions Chelsea in the FA Cup final. The forward, who is pictured wearing a scarf while indoors, uploaded a photograph on Instagram alongside his dog.

Antonio Conte questions Tottenham's Premier League title ambitions
Conte praised Tottenham's progress but stressed it was easier for them to develop talent due to their lower expectations. But Conte , who led Chelsea to the title last season, added: "If [Spurs] don't win the title, it's not a tragedy".

Paulo Dybala: 'I'm happy at Juventus'
But the Italian side couldn't claim the trophy, beaten 4-1 by Real Madrid in the Cardiff final in early June. First, you find out the first official confirmation that Neymar is moving to Paris Saint-Germain .

Can CenterPoint Energy, Inc. (NYSE:CNP) Go The Extra Mile?
Stock market analysts watching Energy Transfer Equity, L.P. (NYSE:ETE) have recently changed their ratings on the stock. Bank of Montreal Can raised its position in shares of Energy Transfer Equity, L.P.by 35.9% in the second quarter.

UPSC declares result of civil services prelims examination
The candidates are requested to visit the Commission's website (http://www.upsc.gov.in) for updates in this regard. After which the candidates will need to enter their details which are available on the hall ticket.

Check Out The LawBreakers PC & PS4 Open Beta This Weekend
However, keep in mind that these downloads are only available until tomorrow, so get it done soon if you plan to. The pre-load is available now on Steam and the event will start at the following times.

Elon Musk's SpaceX valued at $21 billion
The general consensus has been that space exploration is too risky and rocket building too expensive for the private sector. SpaceX has made ten space missions to the ISS under the NASA's space cargo resupply contract.

Gowdy: If I Were Jeff Sessions, I Wouldn't Stick Around
Does he have support in the justice department? This transcript has been automatically generated and may not be 100% accurate. A source close to Sessions' team told the Washington Examiner the attorney general had no immediate plans to resign.

Samsung Pay might be heading to non-Samsung phones
The favourable reception of Samsung's Galaxy S8 and S8 Plus has indeed translated into good n terms of sales and profits . The most impressive fact is that Samsung's mobile division estimated for 29 percent of the company's profits this year.

Juniper Networks, Inc. (NYSE:JNPR) Technical Analysis and Chart Patterns
Over the last five days, shares have faced -4.46% losses and now is up 0.78% since hitting its 200-day moving average of $28.53. Acrospire Investment Management LLC increased its stake in shares of Juniper Networks by 837.8% in the first quarter.





Most Commented

Citizenship scandal: Pauline Hanson's older sister may replace One Nation's Malcolm Roberts
0 comments
Bad future performance Ahead?: American Airlines Group Inc. (AAL)
0 comments
Dowry law: First examine complaint then arrest SC says in landmark verdict
0 comments
Dortmund allow Merino to discuss transfer as Newcastle move nears
0 comments
WhatsApp for Android beta adds App Shortcuts: Here's how to use
0 comments
Trump Praises Law Enforcement in Fighting MS-13 Gang
0 comments
Indian Women's Cricket Team felicitated by the Sports Minister in New Delhi
0 comments
One final ride for Cena, Marine bomb dog diagnosed with cancer
0 comments
Russia Orders US Embassy Staff Cuts in Sanctions Retaliation
0 comments
Shania Twain Shines in New 'Life's About to Get Good' Video
0 comments