Every day, smartphone users have to contend with the possibility of their devices getting infected by malware whenever they use the internet. However, the risks are supposed to get significantly lower when getting apps from sources like Google Play. Unfortunately, three apps discovered to carry spyware capable of recording sounds and stealing call logs were discovered on the app store.
The cyber security firm Lookout made the discovery last Thursday and posted the results via blog post, which identifies Soniac as one of the infected apps. The app is apparently part of the SonicSpy family, which has been active since February of this year.
“The sample of SonicSpy most recently found on the Play Store, called Soniac, is marketed as a messaging app,” the post reads. “While Soniac does provide this functionality through a customized version of the communications app Telegram, it also contains malicious capabilities that provide an attacker with significant control over a target device.
“This includes the ability to silently record audio, take photos with the camera, make outbound calls, send text messages to attacker specified numbers, and retrieve information such as call logs, contacts, and information about Wi-Fi access points.”
As for the other two apps, they are called Hulk Messenger and Troy Chat, Ars Technica reports. The apps have since been removed, but not before they were downloaded thousands of times.
Notably, according to the data that the researchers have gathered on the spyware, it would seem that the country of origin is Iraq. This means that the person who made the malicious codes are either citizens of the country or it was simply made there at the time.
Whatever the case may be, it’s clear that malicious individuals are stepping up their game to spy on users. This is why constant vigilance is advised when downloading anything off the web.