Kaspersky experts have uncovered new versions of the advanced malicious surveillance tool FinSpy. The new implants work on both iOS and Android devices, can monitor activity on almost all popular messaging services, including encrypted ones, and hide their traces better than before. The tools allow attackers to spy on all device activities and exfiltrate sensitive data such as GPS location, messages, pictures, calls and more.

 

FinSpy is an extremely effective software tool for targeted surveillance that has been observed stealing information from international NGOs, governments and law enforcement organizations all over the world. Its operators can tailor the behavior of each malicious FinSpy implant to a specific target or group of targets.

 

The basic functionality of the malware includes almost unlimited monitoring of the device’s activities: such as geolocation, all incoming and outgoing messages, contacts, media stored on the device, and data from popular messaging services like WhatsApp, Facebook Messenger or Viber. All the exfiltrated data is transferred to the attacker via SMS messages or the HTTP protocol.

 

The latest known versions of the malware extend the surveillance functionality to additional messaging services, including those considered ‘secure,’ such as Telegram, Signal or Threema. They are also more adept at covering their tracks. For instance, the iOS malware, targeting iOS 11 and older versions can now hide signs of jailbreak, while the new version for Android contains an exploit capable of gaining root privileges – almost unlimited, complete access to all files and commands – on an unrooted device.

 

Based on the information available to Kaspersky, in order to successfully infect both Android and iOS-based devices, attackers need either physical access to the phone or an already jailbroken/rooted device. For jailbroken/rooted phones, there are at least three possible infection vectors: SMS message, email, or push notifications.

 

 

According to Kaspersky telemetry, several dozen mobile devices have been infected over the past year.

 

“The developers behind FinSpy constantly monitor security updates for mobile platforms and tend to quickly change their malicious programs to avoid their operation being blocked by fixes. Moreover, they follow trends and implement functionality to exfiltrate data from applications that are currently popular. We observe victims of the FinSpy implants on a daily basis, so it’s worth keeping an eye on the latest platform updates and install them as soon as they are released. Because, regardless of how secure the apps you use might be, and how protected your data, once the phone is rooted or jailbroken, it is wide open to spying,” said Alexey Firsh, Security Researcher at Kaspersky Lab.

 

To avoid falling victim to FinSpy, Kaspersky researchers advise users:

  • Do not leave your smartphone or tablet unlocked and always make sure nobody is able to see your pin-code when you enter it.
  • Do not jailbreak or root your device since it will make an attacker’s job easier.
  • Only install mobile applications from official app stores, such as Google Play.
  • Do not follow suspicious links sent to you from unknown numbers.
  • In your device settings, block the installation of programs from unknown sources.
  • Avoid disclosing the password or passcode to your mobile device, even with someone you trust.
  • Never store unfamiliar files or applications on your device, as they could harm your privacy.
  • Download a proven security solution for mobile devices, such as Kaspersky Internet Security for Android.

 

Read the full report on Securelist.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
iPhone X, Now Available in Power Mac Center
Techworld Date Posted: 8 December 2017 3:06 PM | 225 Views
It’s finally here! Power Mac Center has officially launched the most anticipated iPhone X, widely regarded as the most sophisticated iPhone yet. . See More
 
iPhone X, Now Available in Power Mac Center
Techworld Date Posted: 3:06 PM | 225 Views
It’s finally here! Power Mac Center has officially launched the most anticipated iPhone X, widely regarded as the most sophisticated iPhone yet. See More

 
GeForce® Gamers Are Game Ready for Final Fantasy XV! PUBG Now even Faster!
Techworld Date Posted: 1 March 2018 2:55 PM | 174 Views
NVIDIA® has released a new Game Ready Driver for Final Fantasy XV Windows Edition. In addition, it provides a performance boost of up to 7% in PlayerUnknown’s Battlegrounds (PUBG), along with being optimised for.... See More
 
GeForce® Gamers Are Game Ready for Final Fantasy XV! PUBG Now even Faster!
Techworld Date Posted: 2:55 PM | 174 Views
NVIDIA® has released a new Game Ready Driver for Final Fantasy XV Windows Edition. In addition, it provides a performance boost of up to 7% in PlayerUnknown’s Battlegrounds (PUBG), along with being optimised for...See More

 
Next Generation of Kaspersky Private Security Network: Extensive Threat Intelligence within the Network Walls
Techworld Date Posted: 12 September 2017 1:24 PM | 602 Views
Kaspersky Lab is introducing its next generation of Kaspersky Private Security Network, a private version of Kaspersky Security Network that allows enterprises to boost their detection speed with access to real-time global threat intelligence.... See More
 
Next Generation of Kaspersky Private Security Network: Extensive Threat Intelligence within the Network Walls
Techworld Date Posted: 1:24 PM | 602 Views
Kaspersky Lab is introducing its next generation of Kaspersky Private Security Network, a private version of Kaspersky Security Network that allows enterprises to boost their detection speed with access to real-time global threat intelligence...See More

 
Kaspersky Interactive Protection Simulation Online Game Aims to Improve Cybersecurity Cooperation in PH Companies
Techworld Date Posted: 19 July 2018 3:08 PM | 960 Views
Kaspersky Lab conducted its first Kaspersky Interactive Protection Simulation Online training (KIPS Online) with the local technology media recently to highlight the importance of teamwork in corporate cybersecurity.   KIPS Online is a valuable.... See More
 
Kaspersky Interactive Protection Simulation Online Game Aims to Improve Cybersecurity Cooperation in PH Companies
Techworld Date Posted: 3:08 PM | 960 Views
Kaspersky Lab conducted its first Kaspersky Interactive Protection Simulation Online training (KIPS Online) with the local technology media recently to highlight the importance of teamwork in corporate cybersecurity.   KIPS Online is a valuable...See More

 
Samsung Galaxy S10 Is Now Available with Smart Signature Plans
Techworld Date Posted: 29 July 2019 6:00 PM | 491 Views
Samsung Galaxy S10 Is Now Available with Smart Signature Plans. See More
 
Samsung Galaxy S10 Is Now Available with Smart Signature Plans
Techworld Date Posted: 6:00 PM | 491 Views
Samsung Galaxy S10 Is Now Available with Smart Signature PlansSee More

 
Inclusive Work Philosophies in the Philippines Encourage Innovation 

Techworld Date Posted: 2 July 2019 9:41 AM | 291 Views
Inclusive Work Philosophies in the Philippines Encourage Innovation 
. See More
 
Inclusive Work Philosophies in the Philippines Encourage Innovation 

Techworld Date Posted: 9:41 AM | 291 Views
Inclusive Work Philosophies in the Philippines Encourage Innovation 
See More

 
Kaspersky Lab Warns of Future Attacks against Digital Money, Urges OFWs to Be Cyber-Savvy to Protect Themselves Abroad
Techworld Date Posted: 7 March 2018 9:59 AM | 855 Views
With the consistent growth of money remittances from overseas Filipino workers (OFWs) and the rising use of digital payment systems in the Philippines, Kaspersky Lab recently emphasized the need for Filipinos to be more.... See More
 
Kaspersky Lab Warns of Future Attacks against Digital Money, Urges OFWs to Be Cyber-Savvy to Protect Themselves Abroad
Techworld Date Posted: 9:59 AM | 855 Views
With the consistent growth of money remittances from overseas Filipino workers (OFWs) and the rising use of digital payment systems in the Philippines, Kaspersky Lab recently emphasized the need for Filipinos to be more...See More

 
F&D F5060X: A Surround Sound Bluetooth Speaker System
Techworld Date Posted: 13 September 2019 11:42 AM | 1029 Views
F&D F5060X: A Surround Sound Bluetooth Speaker System. See More
 
F&D F5060X: A Surround Sound Bluetooth Speaker System
Techworld Date Posted: 11:42 AM | 1029 Views
F&D F5060X: A Surround Sound Bluetooth Speaker SystemSee More

 
Kaspersky Lab Deploys Industrial CyberSecurity Solutions, Leverages on iTrust Test Bed
Techworld Date Posted: 22 January 2018 3:13 PM | 553 Views
Kaspersky Lab recently announced the deployment of Kaspersky’s Industrial CyberSecurity (KICS) solutions at the Secure Water Treatment (SWaT) test bed of iTrust, a centre for cyber security research of the Singapore University of Technology.... See More
 
Kaspersky Lab Deploys Industrial CyberSecurity Solutions, Leverages on iTrust Test Bed
Techworld Date Posted: 3:13 PM | 553 Views
Kaspersky Lab recently announced the deployment of Kaspersky’s Industrial CyberSecurity (KICS) solutions at the Secure Water Treatment (SWaT) test bed of iTrust, a centre for cyber security research of the Singapore University of Technology...See More

 
ViewSonic is the Official Monitor Sponsor for Canon PhotoMarathon Philippines 2018
Techworld Date Posted: 9 November 2018 1:21 PM | 52 Views
Having over fifteen hundred enthusiastic photographers participating to compete for the best moment captured based on designated themes. ViewSonic will station three VP2468 at the emergency kiosk for participants to preview their work before.... See More
 
ViewSonic is the Official Monitor Sponsor for Canon PhotoMarathon Philippines 2018
Techworld Date Posted: 1:21 PM | 52 Views
Having over fifteen hundred enthusiastic photographers participating to compete for the best moment captured based on designated themes. ViewSonic will station three VP2468 at the emergency kiosk for participants to preview their work before...See More


Power by

Download Free AZ | Free Wordpress Themes