{"id":2785,"date":"2013-07-01T10:00:05","date_gmt":"2013-07-01T14:00:05","guid":{"rendered":"http:\/\/blog.nccomputertech.com\/?p=2785"},"modified":"2013-07-01T10:00:05","modified_gmt":"2013-07-01T14:00:05","slug":"malware-like-program-lets-your-android-phone-spy-on-you","status":"publish","type":"post","link":"https:\/\/nccomputertech.com\/techtalk\/2013\/07\/01\/malware-like-program-lets-your-android-phone-spy-on-you\/","title":{"rendered":"Malware-like program lets your Android phone spy on you"},"content":{"rendered":"<p style=\"text-align:center;\"><a href=\"http:\/\/www.techhive.com\/article\/2043321\/malware-like-program-lets-your-android-phone-spy-on-you.html\"><img data-recalc-dims=\"1\" decoding=\"async\" alt=\"\" src=\"https:\/\/i0.wp.com\/nccomputertech.com\/techtalk\/wp-content\/uploads\/2013\/06\/mobile-privacy-100016521-large.jpg\" \/><\/a><\/p>\n<p>A security firm has figured out how to turn an Android smartphone into a surveillance device that would make Q, the fictional gadget master in the James Bond movies, proud.<br \/>\nThe Security Labs of Kindsight, a part of Alcatel-Lucent, has built a proof-of-concept program capable of tracking the user&#8217;s location, intercepting messages, recording conversations, and taking pictures.<br \/>\n&#8220;Effectively, it turns the Android device into a spy phone,&#8221; Kevin McNamee, lab director for Kindsight, said Friday. McNamee plans to present the espionage tool at the Black Hat USA conference next month.<\/p>\n<h2>Runs inside any app<\/h2>\n<p>The technology, codenamed DroidWhisper, can be hidden as a component within any Android app and run covertly in the background, booting up automatically when the device is turned on.<br \/>\nOnce installed, the spyware would receive instructions from a command-and-control (C&amp;C) server, which could communicate either over the Internet or through the phone&#8217;s Short Message Service used for text messaging.<br \/>\nFrom a control panel on the server, criminals or government spies would be able to control the phone&#8217;s camera, video and still, and make use of its microphone and recording capabilities. The panel also would be used to collect all the recorded content and images, as well as any personal information on the phone.<br \/>\n&#8220;The smartphone is an excellent platform, if you want to launch an insider attack against a corporate network or government network,&#8221; McNamee said. &#8220;The device has all the capabilities that it needs. It has Internet access over the air, it can take pictures [and] it can record sound\u2014a very powerful surveillance platform.&#8221;<br \/>\nWhile not part of the proof-of-concept, the spyware platform could be used to download tools for scanning a corporate network for vulnerabilities when an employee logs into a Wi-Fi network, McNamee said.<br \/>\n&#8220;[The phone] has a completely fully functional network stack, so if it has access to the corporate Wi-Fi, yes, it can scan the network,&#8221; he said.<\/p>\n<h2>Anti-malware programs may halt it<\/h2>\n<p>The most likely ways the spyware could be installed secretly is through an email-carried link to a malicious website, or an app provided through an online store. For example, the component could be injected in a bogus version of a popular game.<br \/>\nWhile Google Play, the official Android store, scans for malware, most third-party stores do not. Roughly three in five of such stores originate in China and Russia, notes the latest mobile threat report from Juniper Networks.<br \/>\nAs of March 2013, more than 90 percent of the mobile malware detected by Juniper targeted the Android platform, nearly double the percentage in 2011.<br \/>\nTo install and run Kindsight&#8217;s component on a device, the criminal would have to find a way to bypass Android&#8217;s built-in security features. By default, applications do not have the permission needed to perform operations impacting other apps or the device in general. Such permissions would have to be granted by the user.<br \/>\nAssuming that the spyware penetrated those defenses, then the next mode of detection for businesses would be in catching the network traffic between the component and the command-and-control servers.<br \/>\nvia <a href=\"http:\/\/www.techhive.com\/article\/2043321\/malware-like-program-lets-your-android-phone-spy-on-you.html\" target=\"_blank\">Malware-like program lets your Android phone spy on you | TechHive<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A security firm has figured out how to turn an Android smartphone into a surveillance device that would make Q, [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[7,10],"tags":[65,655,987],"class_list":["post-2785","post","type-post","status-publish","format-standard","hentry","category-security","category-technology","tag-android","tag-malware","tag-smartphones"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/papNkV-IV","jetpack-related-posts":[{"id":8714,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/11\/05\/newly-discovered-adware-digs-its-claws-deep-into-android-is-nearly-impossible-to-remove\/","url_meta":{"origin":2785,"position":0},"title":"Newly discovered adware digs its claws deep into Android, is nearly impossible to remove","author":"NCCT","date":"November 5, 2015","format":false,"excerpt":"Security researchers found over 20,000 adware samples hiding in apps that masquerade as Facebook, Twitter, Snapchat, and other popular services. Derek Walter | @derekwalter | PCWorld Security researchers have uncovered a new style of Android malware that hides inside of apps that act and look like they\u2019re legitimate services. Lookout\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":7294,"url":"https:\/\/nccomputertech.com\/techtalk\/2014\/12\/29\/beware-fake-the-interview-movie-download-app-is-in-the-wild\/","url_meta":{"origin":2785,"position":1},"title":"Beware: Fake &#8220;The Interview&#8221; movie download app is in the wild","author":"NCCT","date":"December 29, 2014","format":false,"excerpt":"\"The Interview\" is undeniably the hottest movie of the year, which is a comedy about a plan to kill North Korea's leader, Kim Jong-un. It has also been the most controversial, backed by disputes with hackers threatening theaters who will play the said movie with physical action, and also by\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":8976,"url":"https:\/\/nccomputertech.com\/techtalk\/2016\/07\/15\/this-android-trojan-blocks-victims-from-alerting-banks\/","url_meta":{"origin":2785,"position":2},"title":"This Android Trojan blocks victims from alerting banks","author":"NCCT","date":"July 15, 2016","format":false,"excerpt":"By Michael Kan | PCWorld A new Trojan that can steal your payment data will also try to stymie you from alerting your bank. Security vendor Symantec has noticed a \u201ccall-barring\u201d function within newer versions of the Android.Fakebank.B malware family. By including this function, a hacker can delay the user\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":3197,"url":"https:\/\/nccomputertech.com\/techtalk\/2013\/08\/19\/malware-hijacks-mobile-ad-networks-to-siphon-money\/","url_meta":{"origin":2785,"position":3},"title":"Malware hijacks mobile ad networks to siphon money","author":"NCCT","date":"August 19, 2013","format":false,"excerpt":"Asian cybercriminals have figured out an unusual way to use the architecture of a mobile ad network to siphon money from their victims. The new method represents another step in the evolution of mobile malware, which is booming with more smartphones shipping than PCs. Mobile ad networks open up the\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":6309,"url":"https:\/\/nccomputertech.com\/techtalk\/2014\/08\/26\/android-attack-improves-timing-allows-data-theft\/","url_meta":{"origin":2785,"position":4},"title":"Android attack improves timing, allows data theft","author":"NCCT","date":"August 26, 2014","format":false,"excerpt":"A malicious application could enable the theft of login credentials, sensitive images, and other data from Android smartphones by making use of a newly discovered information-leakage weakness in the operating system, according to a team of researchers from the University of Michigan and the University of California at Riverside. The\u2026","rel":"","context":"In &quot;Hardware&quot;","block_context":{"text":"Hardware","link":"https:\/\/nccomputertech.com\/techtalk\/category\/hardware\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":8892,"url":"https:\/\/nccomputertech.com\/techtalk\/2016\/04\/18\/spotty-android-encryption-is-the-story-behind-the-story-of-apples-battle-with-the-fbi\/","url_meta":{"origin":2785,"position":5},"title":"Spotty Android encryption is the story behind the story of Apple\u2019s battle with the FBI","author":"NCCT","date":"April 18, 2016","format":false,"excerpt":"By Jonathan Keane | PCWorld Savvy Android users know that Apple\u2019s face-to-face with the FBI is only the beginning of the phone-encryption furor. Google CEO Sundar Pichai voiced his support for Apple and for strong and safe encryption, but he didn\u2019t give specifics on how Google would deal with this\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/2785","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/comments?post=2785"}],"version-history":[{"count":0,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/2785\/revisions"}],"wp:attachment":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/media?parent=2785"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/categories?post=2785"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/tags?post=2785"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}