This Android “System Update” Can Steal All Your Data

Recently, an Android security firm Zimperium reported that a new malicious app that allows hackers to steal your data has been found on many phones. This application, dubbed the System Update, pretends to update your phone but, in reality, is just a spyware application that can steal all your data including your movements and online search history.

The app uses the Remote Access Trojan (RAT) malware that allows a hacker to access and manipulate your device from afar. Most users ended up downloading the application since it promises to keep your device up to date but it sends all your information back to a Command & Control server.

In an interview with TechCrunch, Shridhar Mittal, Zimperium CEO, said,

It’s easily the most sophisticated [RAT] we’ve seen. I think a lot of time and effort was spent on creating this app. We believe that there are other apps out there like this, and we are trying our very best to find them as soon as possible.

The malware is capable of stealing a broad range of data and cause other problems. This includes:

  • Instant messenger messages and database files
  • Call logs and phone contacts
  • WhatsApp messages and databases
  • Pictures and videos
  • All of your text messages
  • Monitor your GPS location
  • Hijack your phone’s camera to take pictures
  • Review your browser’s search history and bookmarks
  • Turn on the phone mic to record audio.

In addition to this, the malware activates every time the device receives new information. Moreover, after stealing your data, the app also erases evidence of its activities.