The popular iRecorder screen recorder on Android smartphones was recording audio without the knowledge of its users.
A software is malicious to the chagrin of its users. Available on the Google Play Store since September 2021, the iRecorder Screen Recorder app has recorded many audio files from its users since installing an update in August 2022.
Spyware in the update, the presence of spyware is questionable.
The files were recovered remotely by the hacker
The application, which has been downloaded more than 50,000 times on the Google application store, was originally programmed to capture the telephone’s screen and record sound in the surroundings without the user’s permission. He then connected to a server controlled by the hacker before sending the audio content and other files on the smartphone.
In an article Posted on a blog specializing in cyber security, researcher Lukas Stephanko reports that it is extremely rare to see an application arrive in an application store and wait a year before installing a virus there. He also explains that AhMyth’s type of integrated code allowed for remote control and audio recording every fifteen minutes, which was intended for the app creator.
It is possible to revoke app permissions
Baptized AhratThe Trojan found in the iRecorder application can extract almost 20 MB of content, be it web pages or multimedia files.
It is not yet known whether users have been able to protect themselves from this malware. But if the app is not used after a certain time, the authorizations given to the same app can be revoked due to the functionality available in Android phones from February 2020 and version 11 of Android.