It took three years for Google to discover this dangerous Spyware on Android

Google recently discovered a very sophisticated type of Spyware spyware on Android. The frightening thing is that this type of Spyware has not been detected during the last 3 years based on the extremely special ability to destroy itself.

Called Chrysaor, this Android Spyware has been used to target social activists and journalists in Israel, Georgia, Turkey, Mexico, UAE and some other countries.

Chrysaor was discovered by researchers at Lookout and Google. They believe that this type of spyware was created by an organization called NSO Group Technologies in Israel, which specializes in creating secret types of spyware operating inside smartphones and selling it to individuals and groups. officials, governments of some countries or even dictatorships. The types of Spyware created by this organization are often extremely powerful, confidential and effective. Last year, the organization also created a type of Spyware on iOS 9.3 called Pegasus with the aim of fighting human rights activists in the United Arab Emirates.

Chrysaor Spyware was discovered to be installed on about 36 Android devices, but researchers believe that the number of victims will be more than expected. Below is a list of countries and the number of phones infected with this spyware:

Google said it contacted users at risk of spyware infection, turned off apps on affected devices and made changes in the Verify apps feature to protect all people. use.

Spyware Chrysaor on Android brings a variety of spy functions, including:

1. Filter data from popular apps like Gmail, WhatsApp, Skype, Facebook, Twitter, Viber and Kakao.
2. Remote device control based on commands in SMS format.
3. Record voice and video calls.
4. Track keyboard operation and screen capture.
5. Turn off the system update feature to prevent patching of security holes.
6. Track contacts, messages, emails and browsing history.
7. Self-destruction when there is a risk of being detected.

Thanks to the self-destruct feature that security researchers at Google take a long time to find this dangerous Spyware.

Researchers believe that APK Chrysaor has also been released as phishing SMS messages, like Pegasus on iOS devices.

While Pegasus takes advantage of three zero-day vulnerabilities in Apple's iOS operating system to jailbreak the target device, Chrysaor uses the flaw from the famous Android root process, Framaroot to root the device and take control. Full control of the operating system.

Lookout warned that, since Chrysaor began its development in 2014, it is more likely that the NSO group has detected zero-day vulnerabilities on Android and deployed them with the latest version of Chrysaor for Android. .

Lookout also provided a complete, detailed report on Spyware Chrysaor, entitled: Pegasus for Android: Technical Analysis and Findings of Chrysaor . You can click here if you want to delve into this type of Spyware.

How to protect your Android device from hackers? Google recommends that users only install applications from reputable sources, protect your device with a pin or password, turn on the Verify apps feature in the settings section and always update. Your device on a regular basis.

Refer:

1. No anti-virus software can detect this extremely dangerous new Ransomware on Android
2. Completely remove Adware and Spyware on your system
3. Differentiate types of malware
4. Difference between Virus, Spyware and Malware