/>
X

Fake Gmail Android application steals personal data

Mobile security researchers from NQ Mobile have intercepted a fake Gmail Android application dubbed DDSpy.
Written by Dancho Danchev, Contributor on

Mobile security researchers from NQ Mobile have intercepted a fake Gmail Android application dubbed DDSpy.

The SMS based command and control feature of DDSpy is capable of uploading SMS messages, call logs, and vocal records to a remote server. The malware authors behind the fake Gmail Android application have included a hard-coded email address which can be easily changed using SMS messages. Moreover, the malicious application automatically starts recording outbound calls, or when instructed to do so over SMS.

According to NQ Mobile's researchers, they expect that the new features will be introduced in this malicious applications, due to the spotted unused interfaces using GPS technology which they found while analyzing the malicious application.

Find out more about Dancho Danchev at his LinkedIn profile, or follow him on Twitter.

Related

He flew American Airlines, she flew United. For both, the unthinkable happened
screen-shot-2022-06-30-at-10-14-36-am.png

He flew American Airlines, she flew United. For both, the unthinkable happened

Business
Southwest Airlines has cancelled 20,000 flights. Now for the really bad news
screen-shot-2021-07-07-at-4-01-12-pm.png

Southwest Airlines has cancelled 20,000 flights. Now for the really bad news

Business
Giant data breach? Leaked personal data of one billion people has been spotted for sale on the dark web
close-up-of-a-womans-hands-typing-on-a-keyboard-in-the-dark.jpg

Giant data breach? Leaked personal data of one billion people has been spotted for sale on the dark web

Security