HomeCII/OTHow an innocuous app turned into a trojan – Week in security...

How an innocuous app turned into a trojan – Week in security with Tony Anscombe

Published on

spot_img

ESET, a leading cybersecurity company, has recently uncovered an Android app that started off harmless but later transformed into a dangerous spying tool. The app, called iRecorder – Screen Recorder, was initially listed on the Google Play Store in September 2021, but it wasn’t until almost a year later that it was discovered to contain malicious code.

Lukas Stefanko, a malware researcher at ESET, revealed that the app had the ability to steal users’ files and record audio from the device’s microphone. This information could then be exfiltrated by the malware. ESET has named this malware AhRat, as it is a customized version of the open-source AhMyth remote access trojan (RAT).

What makes this case particularly concerning is that the app had no harmful features initially. It gained popularity and was downloaded over 50,000 times before ESET detected and reported its malicious behavior. Google promptly removed the app from the Play Store upon receiving the report from ESET.

According to ESET’s blogpost on the matter, the app appeared to be a legitimate screen recording tool at first. However, the addition of the malicious code allowed the app to execute spying activities without the users’ knowledge. This highlights the need for careful consideration and scrutiny of the apps we download, even if they initially appear harmless.

This incident serves as a reminder to smartphone users to be vigilant and cautious when choosing and using apps. It is important to download apps only from trusted sources, such as the official app stores, and to regularly update and install security patches on their devices. Additionally, users should keep an eye out for any unusual behavior or suspicious permissions requested by the apps installed on their phones.

To further ensure the security of their devices, smartphone users are encouraged to follow ESET’s recommendations for detecting whether their phone has been hacked. ESET has provided a useful guide on how to tell if your phone has been compromised, which can be found on their website.

In the age of digital connectivity, it is crucial for individuals to prioritize their online security and protect their personal information. Cybercriminals are constantly finding new ways to exploit vulnerabilities, and it is our responsibility to stay informed and take preventative measures to safeguard ourselves and our devices.

ESET is committed to raising awareness about cybersecurity and providing valuable insights to protect users from evolving threats. For more information and updates, you can connect with ESET on their social media platforms, including Facebook, Twitter, LinkedIn, and Instagram.

It is important for users to stay informed and educated about the latest threats in order to effectively protect themselves online. With the rapid advancement of technology, it is more crucial than ever to prioritize cybersecurity and adopt best practices to keep our digital lives secure.

Source link

Latest articles

MuddyWater Launches RustyWater RAT via Spear-Phishing Across Middle East Sectors

 The Iranian threat actor known as MuddyWater has been attributed to a spear-phishing campaign targeting...

Meta denies viral claims about data breach affecting 17.5 million Instagram users, but change your password anyway

 Millions of Instagram users panicked over sudden password reset emails and claims that...

E-commerce platform breach exposes nearly 34 million customers’ data

 South Korea's largest online retailer, Coupang, has apologised for a massive data breach...

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

 Fortinet on Wednesday said it observed "recent abuse" of a five-year-old security flaw in FortiOS...

More like this

MuddyWater Launches RustyWater RAT via Spear-Phishing Across Middle East Sectors

 The Iranian threat actor known as MuddyWater has been attributed to a spear-phishing campaign targeting...

Meta denies viral claims about data breach affecting 17.5 million Instagram users, but change your password anyway

 Millions of Instagram users panicked over sudden password reset emails and claims that...

E-commerce platform breach exposes nearly 34 million customers’ data

 South Korea's largest online retailer, Coupang, has apologised for a massive data breach...