Mobile security news from August 2019

Instead of manually extracting links from my Telegram Channel (where I bookmark for myself everything Android #infosec related) I decided to post regular ASMR in a more convenient way for me: Telegram channel -> Links

Join the channel to receive latest Mobile security news.

87 Mobile infosec news from August:

-iOS 13 RCE

-Facebook app uploads user’s system libraries

-Decrypt Signal conversation

-Telegram bug

-debug 3rd party app on iOS 12

-Spyware on Google Play

-new Banking malware – Cerberus

-Mobile Security Penetration Testing List

-RCE in FaceTime

-Vulnerabilities in 5G

-Reversing Android pre-installed apps

-decrypt WhatsAapp to manipulate chat

-2K+ scam apps found on App Store

-analysis of fake iPhone 6 & Samsung S10

-PWN Galaxy S8

-hack WP

Android Security Monthly Recap #8



I switched to more convenient way:

Telegram channel -> Linkshttps://t.co/fMVVBZHX2Q



87 Mobile #infosec news from August:

-iOS 13 RCE

-FB app uploads system libraries

-Decrypt Signal chat

-Telegram bug

-Mobile Security Penetration Testing List pic.twitter.com/Ge1hhDonkM — Lukas Stefanko (@LukasStefanko) September 2, 2019

Harmful apps on Google Play in August 2019

Based on all the researches, blogs, articles, whitepapers, tweets etc. published last month, I did a recap of harmful apps with links to the sources.

In August 2019 there were discovered 204 harmful apps with over 438,400,000+ installs found on Google Play Store.

AdFraud

Two adware apps found on Google Play with over 1.5 million installs.

Trojan found in CamScanner – Phone PDF creator app with 100,000,000+ installs on Google Play

Clicker Trojan Installed from Google Play by 102,000,000 Android Users

Facebook sues two developers from Google Play for click injection fraud

Altogether 7 apps on Google Play with 217,000,000+ installs of these apps.

Adware

27 apps found on Google Play that prompt to install fake Google Play Store (Adware). These app reached over 6,000 installs.

85 Adware Apps Found on Google Play Installed Over 8,000,000 Times

HiddenAds

Six new HiddenAd Trojans found on Google Play with 280,000+ downloads. If you have them installed, remove them.

HiddenAd with 10,000+ installs found on Google Play

HiddenAd trojan discovered on Google Play with 100,000 installs.

Record for HiddenAd Adware found on Google Play. It reached 5,000,000+ installs.

HiddenAd adware discovered on Google Play was one of the top 10 new apps in the store in July. Reached 1M+ downloads.

Subscription Scam

Subscription Scam with 1,000,000+ installs. After start requests 5 star rating and €99,99 per year subscription.

Audio Recorder – Voice Recorder app with 1,000,000+ installs is subscription scam. After 3 days requests payment $199,99 per week.

Subscription scam on Google Play with 1,000,000+ downloads exploits 3-day trial, then robs you of €54.99 per week

Fake Antivirus

Fake Android security solutions found on Google Play Discovered 8 fake AV apps with 1,236,000+ installs

Fake Antivirus with 50,000+ installs

Fake Antivirus with 100K+ installs found on Google Play

RAT/Spyware

First known spyware that is built on the AhMyth open-source espionage tool and has appeared on Google Play – twice

Brazilian Android RAT distributed by over 20 apps via Google Play mostly as WhatsApp update exploiting WhatsApp’s CVE-2019-3568. One of the apps had 10,000+ installs.

Android Spyware masquerade as a security application performed spy activities – tracking device location and eavesdropping on call conversations. It was distributed via Google Play.

Credit Card Phishing

Two fake phishing apps found on Google Play. Both of them request user’s credit card details. Target Brazilian 🇧🇷 users.

Pernambucanas – Cupons – 100+ installs

Midway Acesso (impersontes Riachuelo) – 5+ installs

Fake VPN

Fake VPN app found on Google Play can download and install additional apps.

I didn’t include your discovery? Feel free to post it in the comment section or send me message on Twitter and I will update the post.

Review of harmful apps on Google Play in July 2019