Kaspersky experts have uncovered new versions of the advanced malicious surveillance tool FinSpy. The new implants work on both iOS and Android devices, can monitor activity on almost all popular messaging services, including encrypted ones, and hide their traces better than before. The tools allow attackers to spy on all device activities and exfiltrate sensitive data such as GPS location, messages, pictures, calls and more.

 

FinSpy is an extremely effective software tool for targeted surveillance that has been observed stealing information from international NGOs, governments and law enforcement organizations all over the world. Its operators can tailor the behavior of each malicious FinSpy implant to a specific target or group of targets.

 

The basic functionality of the malware includes almost unlimited monitoring of the device’s activities: such as geolocation, all incoming and outgoing messages, contacts, media stored on the device, and data from popular messaging services like WhatsApp, Facebook Messenger or Viber. All the exfiltrated data is transferred to the attacker via SMS messages or the HTTP protocol.

 

The latest known versions of the malware extend the surveillance functionality to additional messaging services, including those considered ‘secure,’ such as Telegram, Signal or Threema. They are also more adept at covering their tracks. For instance, the iOS malware, targeting iOS 11 and older versions can now hide signs of jailbreak, while the new version for Android contains an exploit capable of gaining root privileges – almost unlimited, complete access to all files and commands – on an unrooted device.

 

Based on the information available to Kaspersky, in order to successfully infect both Android and iOS-based devices, attackers need either physical access to the phone or an already jailbroken/rooted device. For jailbroken/rooted phones, there are at least three possible infection vectors: SMS message, email, or push notifications.

 

 

According to Kaspersky telemetry, several dozen mobile devices have been infected over the past year.

 

“The developers behind FinSpy constantly monitor security updates for mobile platforms and tend to quickly change their malicious programs to avoid their operation being blocked by fixes. Moreover, they follow trends and implement functionality to exfiltrate data from applications that are currently popular. We observe victims of the FinSpy implants on a daily basis, so it’s worth keeping an eye on the latest platform updates and install them as soon as they are released. Because, regardless of how secure the apps you use might be, and how protected your data, once the phone is rooted or jailbroken, it is wide open to spying,” said Alexey Firsh, Security Researcher at Kaspersky Lab.

 

To avoid falling victim to FinSpy, Kaspersky researchers advise users:

  • Do not leave your smartphone or tablet unlocked and always make sure nobody is able to see your pin-code when you enter it.
  • Do not jailbreak or root your device since it will make an attacker’s job easier.
  • Only install mobile applications from official app stores, such as Google Play.
  • Do not follow suspicious links sent to you from unknown numbers.
  • In your device settings, block the installation of programs from unknown sources.
  • Avoid disclosing the password or passcode to your mobile device, even with someone you trust.
  • Never store unfamiliar files or applications on your device, as they could harm your privacy.
  • Download a proven security solution for mobile devices, such as Kaspersky Internet Security for Android.

 

Read the full report on Securelist.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
HyperX Ships 60 Million Memory Modules
Techworld Date Posted: 23 October 2018 10:31 AM | 284 Views
HyperX, the gaming division of Kingston Technology Company, Inc. has announced that since its inception in 2002, it has shipped over 60 million memory modules, which is equivalent to billions of bytes of memory.. See More
 
HyperX Ships 60 Million Memory Modules
Techworld Date Posted: 10:31 AM | 284 Views
HyperX, the gaming division of Kingston Technology Company, Inc. has announced that since its inception in 2002, it has shipped over 60 million memory modules, which is equivalent to billions of bytes of memory.See More

 
Belkin Accessories for New Gen iPhones Are Now Available at Power Mac Center
Techworld Date Posted: 29 June 2018 4:35 PM | 563 Views
  Modern life is unthinkable without the iPhone, especially as it has replaced almost every other device needed at work and in everyday life. Keep yours in peak performance with the help of the.... See More
 
Belkin Accessories for New Gen iPhones Are Now Available at Power Mac Center
Techworld Date Posted: 4:35 PM | 563 Views
  Modern life is unthinkable without the iPhone, especially as it has replaced almost every other device needed at work and in everyday life. Keep yours in peak performance with the help of the...See More

 
Realme 3 Ready to Conquer Offline Sales Following Record-Breaking Shopee Promo
Techworld Date Posted: 2 April 2019 3:59 PM | 93 Views
Realme 3, the budget and midrange smartphone disruptor, is now available for pre-order. For a minimum deposit of PHP500, customers can reserve either the 3GB RAM+64GB storage variant or the 4GB RAM+64GB storage variant.... See More
 
Realme 3 Ready to Conquer Offline Sales Following Record-Breaking Shopee Promo
Techworld Date Posted: 3:59 PM | 93 Views
Realme 3, the budget and midrange smartphone disruptor, is now available for pre-order. For a minimum deposit of PHP500, customers can reserve either the 3GB RAM+64GB storage variant or the 4GB RAM+64GB storage variant...See More

 
Limited Edition Gold Lenovo Legion Y520 Gaming Laptop Now Available in the Philippines
Techworld Date Posted: 5 April 2018 4:53 PM | 84 Views
Lenovo recently announced that the limited edition gold Lenovo Legion Y520 gaming laptop is now available in the Philippines. With its new hardware, it is sure to elevate the gaming experience. It comes with.... See More
 
Limited Edition Gold Lenovo Legion Y520 Gaming Laptop Now Available in the Philippines
Techworld Date Posted: 4:53 PM | 84 Views
Lenovo recently announced that the limited edition gold Lenovo Legion Y520 gaming laptop is now available in the Philippines. With its new hardware, it is sure to elevate the gaming experience. It comes with...See More

 
UBTECH Robotics Introduces STEM-Friendly Jimu Robots for Kids and Teens in the Philippines
Techworld Date Posted: 28 September 2017 4:26 PM | 571 Views
UBTECH Robotics, the company best known globally as the industry leader in artificial intelligence and humanoid robotics today introduced a new line of STEM-friendly Jimu Robots for kids and teens in the Philippines. UBTECH's Jimu.... See More
 
UBTECH Robotics Introduces STEM-Friendly Jimu Robots for Kids and Teens in the Philippines
Techworld Date Posted: 4:26 PM | 571 Views
UBTECH Robotics, the company best known globally as the industry leader in artificial intelligence and humanoid robotics today introduced a new line of STEM-friendly Jimu Robots for kids and teens in the Philippines. UBTECH's Jimu...See More

PCBG  Writing Staff
Don’t Shoot Me, Shoot the Evil Twin!
Techworld • By: PCBG  Writing Staff | Date Posted: 21 March 2018 2:52 PM | 83 Views
The number of cybercriminals is increasing. Today, we have all sorts of news going on about cyberattacks on businesses and individuals, all having different motives, from political activism, to monetary gain, to downright sociopathic.... See More
PCBG  Writing Staff
Don’t Shoot Me, Shoot the Evil Twin!
Techworld • By: PCBG  Writing Staff | Date Posted: 2:52 PM | 83 Views
The number of cybercriminals is increasing. Today, we have all sorts of news going on about cyberattacks on businesses and individuals, all having different motives, from political activism, to monetary gain, to downright sociopathic...See More

 
Synology® Unveils Surveillance Station 8.2 to Liberate Phone-Based Surveillance
Techworld Date Posted: 26 October 2018 4:28 PM | 202 Views
Synology Inc. recently announced Surveillance Station 8.2. Locally available in the Philippines, this release showcases LiveCam, a brand new security camera app that instantly turns a spare phone into an IP camera.. See More
 
Synology® Unveils Surveillance Station 8.2 to Liberate Phone-Based Surveillance
Techworld Date Posted: 4:28 PM | 202 Views
Synology Inc. recently announced Surveillance Station 8.2. Locally available in the Philippines, this release showcases LiveCam, a brand new security camera app that instantly turns a spare phone into an IP camera.See More

 
Victims of Malicious Crypto Miners Increase by 44% as 2.7 Million Internet Users Are Targeted in a Year
Techworld Date Posted: 10 July 2018 10:02 AM | 619 Views
The number of internet users that have been attacked by malicious crypto currency mining software has increased from 1.9 million to 2.7 million in just one year. Statistics for the last 24 months show.... See More
 
Victims of Malicious Crypto Miners Increase by 44% as 2.7 Million Internet Users Are Targeted in a Year
Techworld Date Posted: 10:02 AM | 619 Views
The number of internet users that have been attacked by malicious crypto currency mining software has increased from 1.9 million to 2.7 million in just one year. Statistics for the last 24 months show...See More

 
Go Deeper into the Void – CORSAIR Announces New Lineup of VOID PRO Gaming Headsets
Techworld Date Posted: 23 August 2017 11:33 AM | 77 Views
CORSAIR, a world leader in enthusiast memory, PC components and high-performance gaming hardware, today announced the release of its new range of VOID PRO gaming headsets. When you're deep in the game and sound.... See More
 
Go Deeper into the Void – CORSAIR Announces New Lineup of VOID PRO Gaming Headsets
Techworld Date Posted: 11:33 AM | 77 Views
CORSAIR, a world leader in enthusiast memory, PC components and high-performance gaming hardware, today announced the release of its new range of VOID PRO gaming headsets. When you're deep in the game and sound...See More

 
ASUS Republic of Gamers Announces ROG Swift PG65 Big Format Gaming Display with NVIDIA G-SYNC at CES 2018
Techworld Date Posted: 8 January 2018 4:30 PM | 471 Views
ASUS Republic of Gamers (ROG) today announced that it will unveil the new ROG Swift PG65 big format gaming display (BFGD) with NVIDIA® G-SYNC® at CES® 2018 in Las Vegas.. See More
 
ASUS Republic of Gamers Announces ROG Swift PG65 Big Format Gaming Display with NVIDIA G-SYNC at CES 2018
Techworld Date Posted: 4:30 PM | 471 Views
ASUS Republic of Gamers (ROG) today announced that it will unveil the new ROG Swift PG65 big format gaming display (BFGD) with NVIDIA® G-SYNC® at CES® 2018 in Las Vegas.See More


Power by

Download Free AZ | Free Wordpress Themes