App steals private WhatsApp and Facebook messages

WHATSAPP and Facebook users have been warned over an Android app which could steal your private texts. 

A special breed of communications-stealing malware has been attacking the Google Play Store, according to cyber researchers at Cyfirma. 

The malware exhibits a similar operational mechanism to those previously identified, but this bug has more permissions and presents more of a threat according to the company. 

The app successfully deceives its users and allows the threat actor to extract necessary information, before the victim realises it is a dummy. 

While the app has since been removed from the Play Store, it will remain on your Android if you downloaded it beforehand. 

In this case you’ll have to delete the app, ironically called SafeChat, manually. 

An Indian hacking group known as ‘Bahamut’ is thought to have injected the app with spyware which steals texts, call logs and GPS locations from phones. 

The hacking circle has been active since 2017 and has targeted a wide range of platforms, including iOS, Android, and Windows according to Cyfirma.  

Last year, the group was linked to using fake VPN apps for Android devices which were designed to extract sensitive user data and actively spy on victim’s messaging apps such as WhatsApp, Facebook Messenger, Signal, Viber and Telegram.  ESET researchers reportedly found at least eight versions of the Bahamut spyware, which, they said,  could mean the campaign is well-maintained. The malicious apps were never available for download from Google Play.  The report warned: “If the Bahamut spyware is enabled, then it can be remotely controlled by Bahamut operators and can exfiltrate various sensitive device data, such as contacts, SMS messages, call logs, a list of installed apps, device location, device accounts.”

The software can also uncover device information, such as the type of internet connection, IP address or SIM serial number. 

Tech experts at Cyfirma have not revealed how hackers lured people into downloading SafeChat. 

Cyber experts suspect Bahamut to have been working on behalf of a specific state government in India. 

But a common method is by suggesting to move a conversation to a ‘more secure’ platform, according to BleepingComputer. 

Experts at Cyfirma said Bahamut targets phones specifically in the South Asia region, but the app could have been downloaded by anyone in the world, putting more Android users at risk. Mail Online.

facebookShare on Facebook
TwitterPost on X
FollowFollow us
PinterestSave

Related Posts

HUBBY USES A SPADE TO KILL HIS WIFE, FABRICATES CLAIMS SHE HAD A LOVER . . . The spade delivered devastating injuries to her body and skull . . . High Court details painted a grim picture of rage and brutality
HUBBY USES A SPADE TO KILL HIS WIFE, FABRICATES CLAIMS SHE HAD A LOVER . . . The spade delivered devastating injuries to her body and skull . . . High Court details painted a grim picture of rage and brutality

Fidelis Munyoro Chief Court Reporter A MAN used a spade to kill his wife by repeatedly striking her and delivering devastating injuries to the body and skull in a vicious…

Continue reading
TEACHERS MAKING AN EXTRA US$700 A MONTH FROM EXTRA LESSONS AT HOUGHTON PRIMARY
TEACHERS MAKING AN EXTRA US$700 A MONTH FROM EXTRA LESSONS AT HOUGHTON PRIMARY

Arron Nyamayaro SOME teachers at Houghton Park Primary School are making as much as US$700 a month, on top of their salaries, from extra lessons, while some pupils are being…

Continue reading

Leave a Reply

Your email address will not be published. Required fields are marked *

×
×