Categories: NewsTechnology

Google Discovered An Israeli Android App Designed To Spy On Users

Google has has recently revealed that in an effort to improve its systems that protect users, it unearthed a new family of spyware that was used in an attack on a small number of Android devices, dubbed Chrysaor.

An Israeli spy app targeting specific users

According to researchers, Chrysaor is suspected of being created by NSO Group Technologies, an Israeli firm specialized in the creation of software. The app is also apparently linked to notorious iOS malware Pegasus that was identified by Citizen Lab and Lookout.

NSO Group Technologies has, in the past, been accused of targeting human rights activists with Pegasus, and of selling smartphone hacking software to spy agencies. It is believed the firm was trying something similar with Chrysaor, specifically targeting Android devices this time.

The app was discovered after Google analyzed Pegasus-related data, and even though it was never available on Google Play it has been found on nearly three dozen devices, located mainly in Israel, Georgia, Mexico and Turkey.

According to Google, the goal was not to target as many users as possible, but only a select few. The company said:

To install Chrysaor, we believe an attacker coaxed specifically targeted individuals to download the malicious software onto their device

Once these users were infected, Chrysaor allowed its operators to remotely surveil its victims using the device’s microphone, camera, logging and tracking applications, as well as communication apps such as SMS, Skype and Viber. The spyware didn’t just collect keylogging data, it collected screenshots, tapped rooms users were in, and collected location data.

Related Post

If Chrysaor failed to hijack a phone on its first try, it would then ask for permission that would allow it to access and export data, making it easier than Pegasus to deploy. Google has already notified potential targets, giving them information on how to mitigate the threat.

How it managed to stay hidden

The spy app even had a few tricks up its sleeve in order to stay hidden. Chrysaor was created with a self-destruct mode built in, that would activate if the device did not check in to the server for 60 days. The app could also be removed via command from its server, or via an antidote file located in the device.

Michael Flossman, mobile security researcher at Lookout, even said that:

If it feels like it’s going to be found, it removes itself

Being able to remove itself can explain why security researchers weren’t able to find the problem sooner. According to some, it can even mean that Chrysaor has been around for longer than Pegasus and has likely infected well over the three dozen devices it was found on.

Even though the likelihood of other users being affected by the spyware is small, the tech giant still recommended precautionary measures, such as only installing apps from reputable sources online, and keeping devices updated. Reportedly, the Chrysaor app was tailored to devices running Android Jellybean or earlier.

If you liked this article, follow us on Twitter @themerklenews and make sure to subscribe to our newsletter to receive the latest bitcoin, cryptocurrency, and technology news.

Francisco Memoria

Francisco is a cryptocurrency enthusiast who's lucky enough to be able to write about his passion.

Share
Published by
Francisco Memoria

Recent Posts

Best Altcoins to Invest in Today: Qubetics Sets the Stage for Blockchain’s Future as Bitcoin Hits $108K and Litecoin Soars

The cryptocurrency world has always been a hotbed of innovation, attracting both seasoned investors and…

10 hours ago

Dogecoin Millionaire Predicts This Undervalued Altcoin Could Match DOGE’s 2021 Gains

Dogecoin's 2021 rally was a historic one, turning ordinary investors into overnight millionaires. This magnificent…

10 hours ago

Qubetics Presale Skyrockets to $7.5M as XRP and Arbitrum Lead Best Altcoins for Exponential Returns

The crypto market is always evolving, with big names like Bitcoin and Ethereum leading the…

11 hours ago

Over 300K Users Actively Mine Crypto On BlockDAG’s X1 Miner App While BNB Bulls Eye $3K; What’s XRP’s Price Target?

The crypto market is ablaze with excitement as altcoins like XRP and BNB make major…

11 hours ago

Best Crypto Presale To Buy Now: Rollblock Delivers For Holders With New License, Record Sign Ups and 7000+ Games

Rollblock is quickly becoming the best crypto presale to buy, delivering unmatched value for its…

15 hours ago

Polkadot And Uniswap Gearing For Post-Christmas Jump As Rollblock Raises $7.4 Million in Presale

While Rollblock's continues its crypto presale, with its value increasing regularly, Polkadot (DOT) and Uniswap…

16 hours ago