The app began secretly recording one minute of audio every 15 minutes and sending the recordings to the developer’s server via an encrypted connection. The malicious behavior was discovered by researcher Lukas Stefanko from ESET. It turns out that code based on an open-source Remote Access Trojan (RAT) for Android called AhMyth has been added to the app.
When known, the app had already been downloaded 50,000 times and was subsequently removed from the Play Store.
Although this particular application has been removed, this incident raises concerns about similar “sleeper agent” applications.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
