apps

Security researchers say a serious Android bug could let malware pose as a legitimate app and gain unwanted access to a phone's data and functions. The concept of the 'StrandHogg' bug has been known for several years, but now it's being actively ... exploited to target online banking. In simple terms, the bug has two unwanted effects: it can trick users into giving malware sensitive 'permissions' to access the phone, and it can hijack legitimate apps to trick users into handing over login details and sensitive information. Researchers at Promon explain the bug is with a security setting called ... (view more)

Google is fixing an Android bug that let hackers remotely capture videos and images without permission. The bug could also have revealed the user's precise location, making it particularly dangerous if exploited by stalkers. Security researchers at ... Checkmarx discovered the bug in several default camera apps on a variety of Android phones, including the Google and Samsung apps. (Source: arstechnica.com ) The bug could only be exploited once malware was on the phone, but even then it still shouldn't have allowed such an attack. That's because it involved using a rogue app on the phone to access ... (view more)

Google is to use outside help to scan apps before they go into the Google Play store. It says the move is needed to cope with the continuing increase in the number of rogue Android apps. Just two weeks ago, 21 Android apps were reported to be rogue ... ; in early September, 24 apps were found to be rogue . The new "App Defense Alliance" involves Google working with three security companies, namely: ESET, Lookout and Zimperium. They all specialize in mobile security with a particular emphasis not just on spotting individual rogue apps, but on figuring out common characteristics and clues ... (view more)

Security researchers have exposed more than 20 rogue Android apps that secretly load ads as part of a scam. The rogue apps perform their advertised tasks for cyber criminals, but also drain batteries and overheat phones in the process. It's another ... embarrassment for Google as all the apps were found in the official Google Play Store, which is designed to vet apps to reduce the chances of malicious activity. Remove These Rogue Android Apps Now Researchers at ESET antivirus say they found 42 apps have been part of an orchestrated campaign running since July last year. They were able to ... (view more)

Infopackets Reader Samuel D. writes: " Dear Dennis, Recently my Galaxy s6 phone notified me via the Google Play store icon that an update was available for BlueMail (which I use for emails). I updated BlueMail, but the Google Play icon still has a ... badge stating that there is one update available for BlueMail. It seems that the Google Play store badge won't go away . I've tried updating the app again but there is only the option to 'launch app' and no updates. I've tried rebooting the phone and yet the Google Play store icon is still showing updates . I've searched Google for ' Google Play ... (view more)

Malware creators are using new tactics to avoid their malicious Android apps being exposed. The scam involves hiding and even disguising apps as legitimate ones once they've been installed. Fake Apps Receive Fake Praise It's a twist on a ... well-established scam in which malware is distributed through apps that appear to perform a basic function such as reading QR codes, or turning the camera flash into a flashlight. Thanks to a host of bogus rave-reviews in the Google Play store, the only way to spot something is amiss is that the apps will ask for specific access permissions that are clearly ... (view more)

Nearly half a million users have been infected with "The Joker" malware through the Google Play store. The malware is particularly nasty and works by signing users up to premium services without their knowledge. The malware, spotted by researcher ... Aleksejs Kuprins, was found in 24 apps with a combined 472,000 downloads - though more apps may be found later. As of this writing, the 24 known apps have been removed from the Google Play store. (Source: techradar.com ) Infected Apps Need to be Removed If you have any of the following apps installed on your phone, they should be removed ... (view more)

Users of both Apple devices and the VLC media player should watch out for potentially serious security bugs. The former is a particular embarrassment for Apple. It turns out the company fixed a security bug in iOS 12.3 in April, then accidentally ... removed the fix in iOS 12.4, which it released last month. It now plans to fix it imminently in an emergency update to be titled iOS 12.4.1. The bug is very serious as it potentially allows a rogue app to "execute arbitrary code with system privileges." That effectively means malware could have complete control over an iOS device, something that's ... (view more)

Facebook is to show users what data it collects about their activity on other sites. It won't stop tracking, but will make the data anonymous if users ask. The changes will come in a new settings option called "Off-Facebook Activity." This will list ... all websites and apps that share data about user activity with Facebook. This most commonly happens through two methods. One is that the user has opted to log in to the third-party site through Facebook. In other words, as long as they haven't logged out of their Facebook account, they don't need to create or input user names and passwords for the ... (view more)

A report suggests that thousands of apps on the Google Play store are in fact counterfeits made to look like the legitimate app, but instead pose a major security risk to users. The study says such apps ask for dangerous levels of access to the ... phone or are packed with advertising. The study is a joint effort of the University of Sydney and Australia's national science research agency CSIRO. It took two years to carry out and involved trawling through 1.2 million apps to look for potential counterfeits. Rather than have humans check each app uploaded to Google Play (which would be entirely ... (view more)