GPlayed may be the new face of malware — flexible and adaptable, with a Swiss Army knife-like toolbox that can be used to target pretty much anyone.
A research team suggested a new secure-by-design API after discovering design flaws in the way Android apps are verified by password managers.
The malicious spyware has also been found in use in countries known for targeting human rights.
Several developer tools capture a screen as an app crashes and send it to a third-party server creating a risk of corporate data leakage.
Researchers used AT commands to rewrite device firmware, bypass Android security mechanisms, exfiltrate sensitive device information, and unlock screens.
The spyware’s surveillance capabilities are extensive, logging every call, text, photo, video and more, and sending the data to the attackers.
After a report said Google tracks users even when they opt out, the company is under fire from activists and has been slapped with a lawsuit.
Sloppy Android developers not following security guidelines for external storage opens the door to device takeover and more.
Security experts aren’t happy after Fortnite’s creator, Epic Games, announced it would not go through Google Play.
After researchers found more than 100 Android apps infected by malicious Microsoft Windows executable files, the apps have been removed from Google Play.