Researchers report >4,000 apps that secretly record audio and steal logs

A single threat actor has aggressively bombarded Android customers with more than four,000 spyware apps on the grounds that February, and in as a minimum 3 instances the actor snuck the apps into Google’s official Play Market, safety researchers stated Thursday.

Sonic was one of the 3 apps that made its manner into Google Play, according to a weblog post published Thursday via a researcher from cell safety firm Lookout. The app, which had from 1,000 to 5,000 downloads before Google removed it, provided messaging functions through a customized model of the Telegram communications program. Behind the scenes, Sonic had the ability to surreptitiously report audio, take phones, make calls, ship textual content messages, and retrieve logs, contacts, and statistics approximately Wi-Fi get right of entry to factors. Google rejected the app after Lookout stated it as malicious.

Two different apps—one referred to as Hulk Messenger and the alternative Troy Chat


had been additionally available in Play but had been later eliminated. It’s now not clear if the developer withdrew the apps or if Google expelled them after discovering their spying talents. The ultimate apps—which when you consider that February range barely extra than 4,000—are being dispensed via different channels that weren’t right now clear. Lookout researcher Michael Flossman stated the one’s channels may additionally include opportunity markets or centered text messages that encompass a down load link. The apps are all part of a malware own family Lookout calls SonicSpy.

“What’s usually visible in all SonicSpy samples is that after they compromise a tool they beacon to command and manage servers and anticipate for commands from the operator who can difficulty certainly one of seventy 3 supported commands,” Flossman wrote inside the e-mail. “The way this has been carried out is wonderful throughout the complete SonicSpy family.”

Once established, SonicSpy apps get rid of their launcher icon to hide their presence and then establish a connection to the control server located on port 2222 of arshad93.Ddns[.]net.

Read More Article :

The researcher stated SonicSpy is analogous to every other malicious app family known as Spygate, which safety firm Palo Alto Networks said a remaining year. The call of the developer account—iraqwebservice—and several tendencies discovered in the apps’ code recommend the developer is placed in Iraq. Additionally, lots of the area infrastructure associated with SonicSpy has references to that country. The word “Iraqi Shield” seems continuous. Lookout is continuing to comply with leads suggesting the developer is based totally in that part of the sector.

The record from Lookout is the brand new reminder about the dangers of putting in apps from third-birthday party markets, but they also make clean that limiting assets to Google Play are not any assure an app is safe. Android customers ought to be cautious of any non-Google app assets aside from Amazon’s Android offerings. Users ought to additionally keep away from installing Google Play apps of questionable cost or application, mainly when they have few downloads.

The Android world has registered a remarkable development in terms of user base and applications. Some Android application and programming companies have evidently developed crackerjack applications on this platform. As compared to iOS, Android is the most widely used operating system. But many of the concepts are relatively new in this operating system and the developed applications are vulnerable to https defects. Where there is light there is also darkness, so there are many advantages and disadvantages of Android-based applications.

Advantages of Android based Applications

Multitasking: Android based  apps application development is multitasking record  steal 


So a user can use two or more than two applications at the same time. This makes streaming through the social accounts and listening to songs possible.

Alerts and notifications: There is no way an Android application is going to miss any news update. The reason behind is that notifications fall directly on the home screen. The missed calls are notified by the LED flash.

Open source applications: The Android world is full of lakhs of applications and they are absolutely free. Thousands of games entertainment apps come for free in the Android world.

More smartphones functioning on Android: Big smartphone giants, i.e., HTC, Motorola, Sony Ericsson are using the Android applications. The user can freely use the Android smartphone as per his choice. Whereas, iOS is limited to Apple only.

Simple to use functionalities: The ROM can be easily installed and modified of the Android-based smartphones. Besides the availability of customized ROMs, there are many easy to use functionalities in Android. Moreover, the Android operating systems interface is quite simple as compared to other operating systems.

Widgets: The widgets help in accessing a variety of settings from the home screen. This makes the ergonomics to maneuver the smartphone very strong.

Availability of Google services: Google provides an array of services like Google Reader, Google Drive, Gmail, Docs, which come as a part of the Android operating system. So reading emails, and checking documents become very easy.


There are also many people who don’t agree with the notion that the Android services are better than iOS.

Uninterrupted Internet Connection is required: The Android applications might be cost effective but they need a continuous and uninterrupted internet connection. A lot of money needs to be spent on costly GPRS packets.

Advertisements: Being on open source platform has some downsides too. Too many ads are posted on the play store that further slows down the pace of this operating system.

Battery Zapper: It is always an Achilles’ heels for Android, a lot of processes running in the background consume a lot of energy. The Android-based smartphones face a lot of criticism for this strength zapping weakness.

Infectious Applications: An opens source operating system invites a lot of attacks. The Android-based applications are notoriously infamous for containing malicious viruses. Some of them to mention are Ground Force, Counter-Strike, etc. Apple iOS is proud that it thoroughly checks the integrity of applications before making them available.

Track Record of Some of the Android Based Applications (Free Applications)

Circle of Six

Circle of Six is made for dealing with unforeseen and unfortunate events.



Two quick taps on the phone and your friends mentioned on the application will come running for providing help. The application will send two messages to six of the best buddies of the user. One message will be GPS location and second to get in touch.


It can be safely said that WhatsApp is the most celebrated messenger application in the cyber world. There is hardly any smartphone user who has not heard about this application. A recent upgrade in this application has brought the concept of encrypted messaging in Android.


The application Bandcamp is a big music marketplace. It differentiates itself with other music markets with its uber cool instant streaming tool.

Adobe Photoshop Express 2.0

Poor photos of key family events may kill all the excitement. But Adobe Photoshop rescues all those images and more importantly for free. It has got options to make poor photographs scintillating.

Calorie Counter – MyFitnessPa

Sometimes there is a vantage point between technology and health. Calorie counter keeps a track on all the calories consumed and calories burned. In this way, this Fitness Pal helps its user in losing weight.



You may also like