Android Geo-Location Spyware Installed By Up To 5 Million Users

  /     /     /  
Publicated : 22/11/2024   Category : security


Android Geo-Location Spyware Installed By Up To 5 Million Users


SMSVova, disguised itself as a system update app and duped between 1 million and 5 million users into downloading it from the Google Play store.



Android spyware SMSVova managed to dupe users into thinking it offered a system update app, but instead secretly operated in the background and revealed victims real-time geo-location data to attackers, according to researchers at cloud security company Zscaler ThreatLabz.
After the app gets downloaded and the user tries to fire it up, it would abruptly quit and deliver a message that the update service had stopped. But in reality, the app would hide itself and operate in the background.
SMSVova spyware would then grab the victims most current location and set up shared preferences, which is one of the many methods Android uses to store an applications data.  The Android spyware would also allow attackers to send out a text message with get faq and SMSVova would respond to a set of commands, according to Zscaler.
SMSVova, which has garnered between 1 million to 5 million downloads, has managed to fly under the radar for awhile, ducking detection by Google since it was last updated in December 2014. Google has since removed the app from its Play Store, after receiving notice of its nefarious purpose from Zscaler.
Read more about SMSVova
here
.
[A session on Who are the Bad Guys? Cyber Criminals and Their Motivations will be presented as part of the two-day 
Dark Reading Cybersecurity Crash Course
 at Interop ITX, May 15 & 16, where Dark Reading editors and some of the industrys top cybersecurity experts will share the latest data security trends and best practices.]
 

Last News

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security

▸ Researchers create BlackForest to gather, link threat data. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Android Geo-Location Spyware Installed By Up To 5 Million Users