Some time ago we saw 16 malware applications that could interfere with personal data and money. Unfortunately, this fact is very common in the Android world. Many developers who want to play our game often confuse an old virus with a new name: we recall the example of the malware Escobar. We don’t see another purtroppo today, incoming Russia. However, we don’t shy away from comments that are as political as they are uninteresting, and we learn about the dangers that are true if you just don’t wait.

No, if it’s too late! New malware from Russia discovered that steals sensitive data of Android users

experts say lab52Android, a division of the world-renowned Spanish computer security company S2 Group, has uncovered a new threat to the privacy of users. A Russian malware called “Process Manager” detailed in a report released the following Friday by the company to which it belongs. According to the analysis of experts, the malware is presented as: APK, an Android application installation package. The app has an “ingranaggio” icon that reminds them of it. empostazioni on Android.

When asked for the first time, ‘malware application requires 18 authorization Access to the user, including network connection status, phone, location, SMS messages, microphone, first floor usage, and cached data from the system. Access to all these features tomb risk for privacy and can cause a range of damage.

After all authorizations are obtained, the icon of the application is displayed and only one is displayed. inform goalkeeper, to indicate that the software is running in the background. This is a characteristic insolita For malware that tends to maintain maximum privacy while stealing data and spying on the user. However, just for this feature, the user tends to do nothing.

All information collected from the application is sent to: JSON format (JavaScript Object Notation, used to transfer data between a server and a Web application) to a server located in Russia. Process Manager, which is the name we use for the malware, also has a code list. Try installing an app called “Roz Dhan” Available on Google Play Store. Hackers use this app not only to hide sensitive data but also to earn profits through commissions and microtransactions.

As it is still unclear how the malware spreads, my advice to you is check the permissions of the suspicious app installed on the smartphone. Android 12 simplifies this monitor by displaying an indicator (top right) that shows the camera or access microphone even when the user is not using it.

font | Beeping Computer