Hacking Team had backdoor app in Play Store




Hacking Team had an app in the Play Store posing as a news app, but that could be used in practice to install a backdoor on an Android device. Fraudulent code was downloaded after installation and thus unnoticed by the Play Store.

The app used the name of a news about BeOS which no longer exists, BeNews, to arouse suspicion. According to Trend Micro allowed the app to last Tuesday in the Play Store, and was downloaded until then fifty times. The app was removed shortly after an attacker a large amount of files Hacking Team had leaked. It is unclear whether Google has removed the app, or Hacking Team has done itself to limit the damage.

The false news app pulled his malicious code from the Internet. That had a big advantage: when the app was pulled through the scanner of Google, that code was not present, so no alarm was beaten. Unlike Apple checks apps in the Google Play Store not by hand, but apps are achieved, however, by a malware scanner.

Hacking Team used an exploit tool that at least Android versions 2.2 to 4.4.4 could crack, but it is possible that other Android versions are affected. Trend Micro thinks the app then installed a spying tool Hacking team, RCSAndroid, which enables the device can be removed.

Last week it was announced that Hacking Team, an Italian company that produces espionage software to governments, has been hacked. The attacker thereby gave a large amount of internal information freely. Among them were sensitive internal e-mails, but also working in zero day -exploits software like Flash.


In: Technology & Gadgets Asked By: [15564 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »