Google's security team has discovered a new powerful malware for Android for espionage. Experts say the virus is called Lipizzan and was developed by Israeli Equus Technologies. According to the company's LinkedIn profile, it is specialized in creating "individual innovative solutions for law enforcement, intelligence agencies and national security organizations."
Google employees have identified a total of 20 Lipizzan-infected apps, some of which have been accessed through the official Google Play Store internet store.
Infected apps use a two-step process to ignore crawling the Google Bouncer security system. The program contains a legitimate code that Google Bouncer does not detect as malicious, but on the victim's device, Lipizzan loads an additional module that remains inconsequential in the licensing process. In fact, this module scans the data contained in the device and gets root-rights using various exploits.
Ipizzan can record phone calls and VoIP calls, take pictures, use the camera on the camera, capture device and user information (contacts, call log, SMS messages, etc.) as well as To retrieve data from a variety of apps, including Gmail, Hangouts, KakaoTalk, LinkedIn, Messenger, Skype, Snapchat, StockEmail, Telegram, Threema, Viber and WhatsApp.
Right now, it's not known who the malware operator is, and for what purpose the infected apps have been downloaded through the Google Play Store.
Hi. I am a volunteer bot for @resteembot that upvoted you.
Your post was chosen at random, as part of the advertisment campaign for @resteembot.
@resteembot is meant to help minnows get noticed by re-steeming their posts
Even better: If your reputation is lower than 28 re-steeming only costs 0.001 SBD!
If you want to learn more - read the introduction post of @resteembot.
If you want help spread the word - read the advertisment program post.
Which apps are the carriers of the virus?
The guys from Google did not mention that, but the infected apps were removed.