Malware spreads in the Huawei app gallery

Over nine million Android devices are infected with a Trojan horse called “Android-Cynos.7.origin”. About 190 infected Android apps that users downloaded from Huawei’s app gallery, like tech magazine, are responsible for the mentioned outbreak ‘chip’.

Huawei App Gallery as a starting point

It is said that the infected applications are mainly games. The games are aimed at an international audience, they say. The Trojan is a problem because it asks users for specific permission – for example, permission to access phone data. Once confirmed, the report states that the Trojan may collect user data and send it to a remote service.

The most downloaded infected games are:

  • A Chinese game called “快点 起来” (Eng. Hide Quickly) with over two million downloads

  • MIT “Cat Adventures” 427,000 downloads

  • “Drive School Simulator” with 142,000 downloads

  • Russian game called “Команда должна убить боеголовку” (the engineer team must destroy the warhead) “with more than 8000 downloads

According to “Chip”, the virus obtains the following data:

  • User mobile phone number

  • Device location based on GPS coordinates or data from cellular network and Wi-Fi hotspot (if the app is allowed to access the location)

  • Various parameters of the cellular network, such as the network code and the country code of the cellular network. Also GSM cell ID and international GSM area code (if the app has permission to access the location)

  • Various technical data of the machine

  • Various settings of the Trojan application metadata

Cyber ​​attacks are a new but growing problem. This is also shown by the study on cybersecurity in small and medium-sized businesses in 2021, with one in three small and medium-sized businesses being the victim of an attack. Read more about the studies here.

If you want to know more about cybercrime and cybersecurity, Subscribe here for the weekly newsletter of Swisscybersecurity.net. The portal contains daily information on current threats and new defense strategies.

Source link

About Donald J. Beadle

Check Also

New Profile Pic app: Does Russia collect personal data from Facebook users?

It’s a new internet craze that turns your Facebook profile picture into a painting or …