Android Geo-Location Spyware Installed By Up To 5 Million Users

  /     /     /  
Publicated : 22/11/2024   Category : security

Android Geo-Location Spyware Installed By Up To 5 Million Users


SMSVova, disguised itself as a system update app and duped between 1 million and 5 million users into downloading it from the Google Play store.


Android spyware SMSVova managed to dupe users into thinking it offered a system update app, but instead secretly operated in the background and revealed victims real-time geo-location data to attackers, according to researchers at cloud security company Zscaler ThreatLabz.
After the app gets downloaded and the user tries to fire it up, it would abruptly quit and deliver a message that the update service had stopped. But in reality, the app would hide itself and operate in the background.
SMSVova spyware would then grab the victims most current location and set up shared preferences, which is one of the many methods Android uses to store an applications data.  The Android spyware would also allow attackers to send out a text message with get faq and SMSVova would respond to a set of commands, according to Zscaler.
SMSVova, which has garnered between 1 million to 5 million downloads, has managed to fly under the radar for awhile, ducking detection by Google since it was last updated in December 2014. Google has since removed the app from its Play Store, after receiving notice of its nefarious purpose from Zscaler.
Read more about SMSVova
here
.
[A session on Who are the Bad Guys? Cyber Criminals and Their Motivations will be presented as part of the two-day 
Dark Reading Cybersecurity Crash Course
 at Interop ITX, May 15 & 16, where Dark Reading editors and some of the industrys top cybersecurity experts will share the latest data security trends and best practices.]
 

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
Android Geo-Location Spyware Installed By Up To 5 Million Users