Title: Pegasus Malware Used for Surveillance, ESET Discovers Trojan in Android Apps
In a shocking revelation, the NSO Group’s Pegasus malware has been exposed for its role in spying on journalists and activists in Jordan. The scandal has escalated to the point where technology giant Apple has filed a lawsuit against the notorious NSO Group. This development raises questions about the potential misuse of surveillance technology and the need for stricter regulations in the digital world.
Additionally, cybersecurity firm ESET has identified a new threat targeting Android users. The company has uncovered 12 chat apps masquerading as harmless communication tools but, in reality, deploy a destructive Trojan on users’ smartphones. Victims unwittingly download these apps, unaware that they are compromising their personal data.
The apps, some of which have been found on the Google Play Store, have sparked concerns about the efficacy of the store’s security protocols. The Trojan embedded within these apps is known as Vajra Spy, previously identified as a Remote Access Trojan (RAT) variant that manipulates Google Cloud Storage to carry out its malicious activities.
Once installed, Vajra Spy’s main objective is to harvest sensitive information from infected devices. This includes stealing text messages, conversations from popular messaging platforms such as WhatsApp and Signal, and call histories. To entice victims into downloading these Trojan-infected apps, the perpetrators employed social engineering tactics with a romantic theme.
ESET’s investigations have revealed that the apps possess the capability to extract a wide array of data from victims’ phones. This includes contact details, messages, installed apps, call logs, and local files stored in various formats. More advanced versions of these apps can even intercept messages on secure platforms like WhatsApp and Signal, record phone calls, log keystrokes, take photos without users’ consent, and record audio.
Worryingly, this incident is not the first example of bad actors exploiting push notifications on smartphones to collect data and sell it to government agencies. To safeguard against such intrusive spying, experts suggest users disable notification access for suspicious apps.
As the news unfolds, the revelations surrounding the NSO Group’s Pegasus malware and the discovery of the Vajra Spy Trojan reinforce the need for stronger cybersecurity measures and comprehensive regulations to safeguard individual privacy. Heightened vigilance is crucial for users to protect themselves from potential threats and ensure their personal data remains secure.
“Prone to fits of apathy. Devoted music geek. Troublemaker. Typical analyst. Alcohol practitioner. Food junkie. Passionate tv fan. Web expert.”