From time to time, reports come in from credible sources about the need to get rid of one or two harmful Android apps – we have another news similar to that about two Android apps.
Further details on the two Android apps
Cybersecurity firm Cyfirma has discovered two malicious applications in the Google Play Store that were used by state-sponsored threat actors to collect location data and contact information from targeted devices. The attack is believed to be carried out by an Indian hacker group called “DoNot,” and Pakistan has reported the incidents.
The two apps identified in the Play Store are nSure Chat and iKHfaa VPN. The latter app cloned code from a legitimate program called Liberty VPN and added additional code to access and collect the target’s contact list and determine their location.
Unlike other VPNs, iKHfaa VPN requests permission to access the user’s location and contacts. This raised suspicions at Cyfirma, leading them to uncover the involvement of the “DoNot” group in the attack. When users install the VPN software, they receive a pop-up asking to “turn on device location, which uses Google’s location service.” If the targeted person’s phone has GPS enabled, the malicious software can determine their current location. Otherwise, it will show the last known location.
These two malicious applications, along with a third app from the same developer (which appears to be non-malicious), are still available on the Google Play Store. It is advised to remove them promptly from your phone, regardless of your location. The developer is identified as SecurITY Industry, and the downloads for the malicious apps are relatively low, indicating that they are targeting specific individuals while being present in Google’s app store.
It is crucial to be cautious when installing apps and read the comments section, as it can help identify potential risks. Look for warning signs such as user complaints about excessive device heating, sluggish performance, or rapid battery drain. These indicators should make you wary of installing such apps.
To get our latest news once they’re published, please follow us on Google News, Telegram, Facebook, and Twitter. We cover general tech news and are the first to break the latest MIUI update releases. Also, you get issues-solving “How To” posts from us.