DodoFinance Breaking News Made For You!
Do you receive a notification about a software update for your Android phone? Then it will be very important in the coming period that you pay attention to where you are headed after clicking on it. Do not install apps from outside the Google Play Store, regardless of their reliability.
Systeemupdate-malware
With more frequent software updates for Android, it is also becoming more and more important for users to keep an eye on this. Still, it’s important not to just install apps that claim to install updates on an Android device, according to a report by security researchers from Zimperium that via TechCrunch has been published. There are a number of ways that malicious people try to trick users into installing the app, which is not in the Google Play Store.
Once the app is installed from outside of the Play Store, it will disappear from your list of apps. So, unless you check your phone’s app list, there is no trace of this malicious app. This allows the malware developers to easily collect invisible data on the device. According to Zimperium researchers, the application collects, among other things, photos, messages and location data from the device.
Malicious people try to trick you with reports, image: Zimperium
Additionally, the software update app can take control of your phone to activate your camera or microphone remotely. It is also striking how the developers have thought about the use of the data of the application. To limit data usage, the app does not send full photos, only thumbnails. By limiting data usage, it is even more difficult for users to identify the malicious application, according to the researchers.
Not in the Play Store
Zimperium CEO Shridhar Mittal calls it “by far the most advanced app we’ve seen”. Mittal is working with his team of researchers to find similar applications, which he expects to be present. It is not clear exactly how the malicious parties deploy the malware – it could be targeted attacks.
Finally, security researchers at Zimperium worked with Google to determine if the app has ever been on the Play Store. This is not the case, say the researchers. However, it’s still unclear how Google will ban the app from the Play Store if the malware developers go this route. A Google spokesperson declined to answer TechCrunch’s question.
If you ever get a software update notification, never install (external) apps. In principle, all software updates are managed by the system, no external application is required. Have you ever come across such an app or even installed it? Be sure to let us know in the comments at the bottom of this article.
