• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 28th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Technology News
Android

Fake Netflix, WhatsApp, Facebook Android Apps Contain SpyNote RAT

January 30th, 2017 Waqas Security, Android, Malware 0 comments
Fake Netflix, WhatsApp, Facebook Android Apps Contain SpyNote RAT
Share on FacebookShare on Twitter

Cyber criminals prefer targeting Android devices due to its open-source model which means the source code is freely available for anyone to see and use. Lately, there has been an increase in third party apps for Android users but these apps come with a hefty price.

Recently, the IT Security researchers at Zscaler identified some fake apps uploaded by cyber criminals that are infected with an infamous SpyNote RAT (Remote Access Trojan). HackRead first reported on SpyNote in August last year when Palo Alto’s Unit 42 revealed that the Trojan allows attackers to gain remote administrative control of those devices on which users have installed apps in APK format, the process of downloading apps in APK format on Android devices is known as “sideloading” which is only possible if the user has allowed “Unknown Sources” in their security settings.

Must Read: 38% of Android VPN Apps on Google Play Store Plagued with Malware

At this time, SpyNote is not present in Google Play Store, however, researchers at Zscaler have identified several third-party apps that are not only fake but also infected with SpyNote. The names of those apps as identified by Zscaler are:

“Netflix, Whatsapp, YouTube, Video Downloader, Google Update, Instagram, Hack Wifi, AirDroid, WifiHacker, Facebook, Photoshop, SkyTV, Hotstar, Trump Dash and PokemonGo.”

Among the above-mentioned apps, Zscaler researchers have kept their emphases on fake Netflix app being infected with a new variant of SpyNote RAT. According to Shivang Desai of ZScaler, “The iOS and Android apps for Netflix are enormously popular, effectively turning a mobile device into a television with which users can stream full movies and TV programs anytime, anywhere. “But the apps, with their many millions of users, have captured the attention of the bad actors, too, who are exploiting the popularity of Netflix to spread malware.”

Screenshot source: Zscaler

The new variant comes with capabilities to perform actions including reading text messages, viewing contacts, turning on the microphone of an infected device and listening to conversations, recording screen, take screenshots, and send user files to a Command & Control (C&C) set up by cyber criminals.

Full preview of access SpyNote gets on an infected device / Screenshot source: Zscaler

After installing, once the app is tapped to open it shows a blank window and removes itself from the screen tricking users into believing the app has been removed from the devices but actually it runs from the background to carry its malicious attack. It must be noted that there are several other fake apps currently infected with malware including Super Mario Run and Pokémon Go.

[fullsquaread][/fullsquaread]

How to protect your device from malware: 

To protect your Android device from malware and RATs like SpyNote; users must never download apps from a third-party store and only use Google Play Store to download apps. Also, never click on a link sent by an unknown contact in an SMS or email message and don’t forget to go through our 7 easy tips to strong Android security against hacks. Stay safe online.


DDoS attacks are increasing, calculate the cost and probability of a DDoS attack on your business with this Incapsula’s DDoS Downtime Cost Calculator.

  • Tags
  • Android
  • Facebook
  • Google
  • Google Play
  • hacking
  • Malware
  • Privacy
  • RAT
  • security
  • Social Media
  • TROJAN
Facebook Twitter LinkedIn Pinterest
Previous article 70% of DC Police CCTV cameras were hacked before presidential inauguration
Next article Another Radio Station Transmission hacked with F*** Donald Trump Songs
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
World's Most 'Resilient Malware' Botnet Emotet Taken Down

World's Most 'Resilient Malware' Botnet Emotet Taken Down

Top Cybersecurity Threats to Watch in 2021

Top Cybersecurity Threats to Watch in 2021

Database of 176 million Pakistani mobile phone users sold online

Database of 176 million Pakistani mobile phone users sold online

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
NetWalker ransomware disrupted - Cryptocurrency and domain seized
Cyber Crime

NetWalker ransomware disrupted - Cryptocurrency and domain seized

44
Transferring Whatsapp data from iPhone to Android with MobileTrans
How To

Transferring Whatsapp data from iPhone to Android with MobileTrans

30
World's Most 'Resilient Malware' Botnet Emotet Taken Down
Cyber Crime

World's Most 'Resilient Malware' Botnet Emotet Taken Down

86

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us