New malware with extensive spyware capabilities steals data from infected Android devices and is designed to automatically trigger whenever new info is read to be exfiltrated. The spyware can only be installed as a 'System Update' app available via third-party Android app stores as it was never available on Google's Play Store. This drastically limits the number of devices it can infect, given that most experienced users will most likely avoid installing it in the first place. The malware also lacks a method to infect other Android devices on its own, adding to its limited spreading capabilities.
However, when it comes to stealing your data, this remote access trojan (RAT) can collect and exfiltrate an extensive array of information to its command-and-control server. Zimperium researchers who spotted it observed it while "stealing data, messages, images and taking control of Android phones."
"Once in control, hackers can record audio and phone calls, take photos, review browser history, access WhatsApp messages, and more," they added. Zimperium said its extensive range of data theft capabilities includes:
Once installed on an Android device, the malware will send several pieces of info to its Firebase command-and-control (C2) server, including storage stats, the internet connection type, and the presence of various apps such as WhatsApp. The spyware harvests data directly if it has root access or will use Accessibility Services after tricking the victims into enabling the feature on the compromised device. It will also scan the external storage for any stored or cached data, harvest it, and deliver it to the C2 servers when the user connects to a Wi-Fi network. Unlike other malware designed to steal data, this one will get triggered using Android's contentObserver and Broadcast receivers only when some conditions are met, like the addition of a new contact, new text messages, or new apps being installed.
"Commands received through the Firebase messaging service initiate actions such as recording of audio from the microphone and exfiltration of data such as SMS messages," Zimperium said.
"The Firebase communication is only used to issue the commands, and a dedicated C&C server is used to collect the stolen data by using a POST request."
The malware will also display fake "Searching for the update.." system update notifications when it receives new commands from its masters to camouflage its malicious activity. The spyware also conceals its presence on infected Android devices by hiding the icon from the drawer/menu. To further evade detection, it will only steal thumbnails of videos and images it finds, thus reducing the victims' bandwidth consumption to avoid drawing their attention to the background data exfiltration activity. Unlike other malware that harvests data in bulk, this one will also make sure that it exfiltrates only the most recent data, collecting location data created and photos taken within the last few minutes.
If you would like to read more helpful articles and tips about various software and hardware visit errortools.com daily.
Digital Publisher: GreenTree Applications srl Product Version: YTD Video Downloader 4.8.9.7 Original File Name: YTDStub.exe Entry Point: 0x0000323C
A solid reason to switch to Mac from Windows PC is Mac OS. Based on Linux, offers more stability and better security than Windows but you will not be able to find a vast array of applications on it.
Even when Mac OS X (the first big one) was first introduced, it looked and felt like ages beyond Windows (Microsoft just recently made a slick and modern design with Windows 11). Under the hood, it turned out that the operating system itself is stable and incredibly fast & responsive. If you value stability and easiness of use, Mac OS is the Operating system for you.
This one is easy, if you are already invested in apple devices like iPhone and iPad, having an apple computer is one step forward into the apple ecosystem and one more step into easy sharing of documents and data between devices.
Calendars, emails, photos, videos, documents, and many more can easily be shared and synched between devices with a single apple ID making workflows much easier than on other operating systems.
Developers all around the world say that developing on Mac is much better and smoother than on PC, this has probably to do something with OS being based on Linux but whatever the case is, it is much smoother and it just feels better. Apple laptops are often the go-to choice of developers for a reason.
Also if you are in the development business for applications and services aimed at iPhone or iPod then there is no really another way than to be into the apple ecosystem and own apple hardware.
A lot of professional-grade software exists for both the Windows platform and Mac OS but there is some software that exists exclusively for Apple hardware like Final Cut Pro or Logic Pro. Both applications are used by professionals and are industry-standard software.
Logic pro is used by industrial audio specialists all around the world and is used in professional studios. Final Cut Pro is also used worldwide by video editors and if you are specializing in any of these two fields Mac seems like a very reasonable platform since the software can not be found on Windows. These two are examples, there are other similar applications that are only available on Mac OS
Apple hardware is made of high-quality materials and components and it is proven over time that it lasts longer than usual. There are iPhones out there that have 13 years and they are still working, G3 and G4 Macs that are still functional.
When buying Apple products they will outlive other ones if treated properly so in the end you could be saving money by purchasing them.