Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Igexin advertising API brings spyware to steal user information
Mobile developers, if you find an easy-to-use advertising API, make sure it's not snoopware.
It is an important lesson that Lookout Security has found when analyzing the Igexin advertising software development kit (SDK) and showing hundreds of applications that cannot be found ('not found') on Google. Play.
This SDK has tracked a lot of mobile phones, saved call time, phone numbers, call status and sent back to igexin.com page. It is available on more than 500 applications that Lookout checks, after company researchers recognize the application communicates with the IP address associated with malware and begins to wonder.
'We found the application to download large files that were encrypted after making multiple requests to REST API at http:/// sdk [.] Open [.] Phone [.] Igexin.com/api.php one The endpoint is used by the Ads SDK of Igexin ', the company explained. 'Downloading encrypted files and the presence of calls on com.igexin has namespaces to dalvik.system.DexClassLoade of Andoird (used to separate classes (classes) from .jar files and. apk) is enough to show that there is a need for further analysis of malware capabilities. '
Igexin advertising API brings spyware to steal user information Picture 1
SDK to bring spyware to your computer and steal user information
Since then, researchers have found a number of SDK versions with framework that allows clients to download random code, get instructions from endpoint http:/// sdk [.] Open [.] Phone [.] Igexin [.] com / api.php.
The application will then download the executable JAR file on the 'Phone Home' of the SDK. Neither the user nor the application developer can control the occurrence: 'Users and application developers cannot control what is executed on the device after executing the remote API request'.
The amount of information that the app obtains is still limited to permissions on Android, but Lookout says that besides the call history, there is still an application that takes user history information.
Marvin FryYou should read it
- How to check for spyware on Android devices
- Tips to detect spyware stealing information on the phone
- It took three years for Google to discover this dangerous Spyware on Android
- Apple sues the maker of Pegasus spyware that specializes in stealing data on iPhones
- The dangers of spyware on iPhone
- The most effective antispyware tool?
- 8 indications that the computer is infected with spyware
- Anti-spy expert
- Many Android users discover that their phones have spyware installed after traveling to China
- NoAdware v4.0: free from spyware infection!
- The standard of spyware is adopted
- Viruses transmitted from smartphones to computers appear in Vietnam
Maybe you are interested
Attack the network
Trojan banks surpass the malware defense of Google Play- New malware-digging tool on Linux devices
- New variant of ransomware Arena Crysis appeared
- Watch out for the risk of spreading the virus from Facebook Messenger on Windows, MacOS and Linux
- WireX DDoS Botnet: tens of thousands of Android phones are hacked
- LabVIEW vulnerability allows hackers to attack your computer
Trojan banks surpass the malware defense of Google Play
New malware-digging tool on Linux devices
New variant of ransomware Arena Crysis appeared
Watch out for the risk of spreading the virus from Facebook Messenger on Windows, MacOS and Linux
WireX DDoS Botnet: tens of thousands of Android phones are hacked
LabVIEW vulnerability allows hackers to attack your computer