Researchers discover espionage campaign targeting Indian users via fake messaging apps

66

New Delhi, April 10 (IANS) Researchers have discovered an active espionage campaign ‘eXotic Visit’, targeting Android users via fake messaging apps that are distributed through dedicated websites and Google Play, a new report said on Wednesday.

According to ESET Research, the campaign appears to primarily target a select group of Android users in India and Pakistan.

The researchers have tracked the eXotic Visit campaign’s activities from November 2021 through to the end of 2023.

While the downloaded apps provide legitimate functionality, they come bundled with open-source XploitSPY malware.

“Apps that contain XploitSPY can extract contact lists and files, the device’s GPS location, and the names of files listed in specific directories related to the camera, downloads, and various messaging apps such as Telegram and WhatsApp,” the researchers said.

“The malware also uses a native library, which is often used in Android app development for improving performance and accessing system features. However, in this case, the library is used to hide sensitive information, like the addresses of the C&C servers, making it harder for security tools to analyze the app,” they added.

Apps like Dink Messenger, Sim Info, and Defcom were taken down from Google Play.

Moreover, the report identified ten additional apps that contain code that was based on XploitSPY and shared its findings with Google. Following that, the apps were removed from the store.

Overall, around 380 victims have downloaded the apps from websites and Google Play store and created accounts to use their messaging functionality, the report said.

–IANS

shs/dan

Go to Source

Disclaimer

The information contained in this website is for general information purposes only. The information is provided by BhaskarLive.in and while we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the website or the information, products, services, or related graphics contained on the website for any purpose. Any reliance you place on such information is therefore strictly at your own risk.

In no event will we be liable for any loss or damage including without limitation, indirect or consequential loss or damage, or any loss or damage whatsoever arising from loss of data or profits arising out of, or in connection with, the use of this website.

Through this website you are able to link to other websites which are not under the control of BhaskarLive.in We have no control over the nature, content and availability of those sites. The inclusion of any links does not necessarily imply a recommendation or endorse the views expressed within them.

Every effort is made to keep the website up and running smoothly. However, BhaskarLive.in takes no responsibility for, and will not be liable for, the website being temporarily unavailable due to technical issues beyond our control.

For any legal details or query please visit original source link given with news or click on Go to Source.

Our translation service aims to offer the most accurate translation possible and we rarely experience any issues with news post. However, as the translation is carried out by third part tool there is a possibility for error to cause the occasional inaccuracy. We therefore require you to accept this disclaimer before confirming any translation news with us.

If you are not willing to accept this disclaimer then we recommend reading news post in its original language.

Online Cricket Play Online