ESET security researchers found the dangerous VajraSpy malware in 12 Android apps, half of which were also available in the Play Store between April 2021 and September 2023.

With apps infected by VajraSpy, malicious parties were able to capture personal data (contacts, messages), but depending on the permissions granted, they could even record phone calls. The icing on the cake is that you can even activate the device's camera using it, making the phone the ultimate surveillance tool.

the Sleeping computer According to its summary, ESET researchers believe the malware is run by a malicious group called Patchwork APT. They have been active since at least 2015.

See also  Index-Tech - CEO apologizes for Cyberpunk 2077

According to ESET researcher Lukas Stefanko, VajraSpy code was found in 12 apps, six of which were also available in the official Android app store, Play Store, during the aforementioned two-year period. These are the following:

  • Companions
  • private conversation
  • meet me
  • let's talk
  • Quick chat
  • Chit chat

Except for the first app, which is a news app, all the apps are chat platforms. The following apps are distributed outside the Play Store:

  • Hello chat
  • YohooTalk
  • Tik Tok
  • hatchery
  • GlowChat
  • Wave chat

If you have any on your device, delete them immediately. Apps may only be purchased from the Play Store, but as the example above shows, even that doesn't guarantee anything. The user should ensure that he only downloads applications from known and trusted developers.

If you want to know about similar things at other times, like it HVG Tech Department Facebook page.