- Joined
- May 15, 2016
- Messages
- 14,103
- Likes
- 2,643
- Points
- 1,730
The FinSpy implant for iOS can hide traces of a jailbreak, while the Android version contains an exploit to get root permissions.
Kaspersky Lab has detected a new version of FinSpy spyware that can monitor all user actions on a mobile device. The malware collects information from instant messengers using encryption, such as Telegram, WhatsApp, Signal and Threema. The FinSpy implant for iOS can hide traces of a jailbreak, and the Android version contains an exploit to get root permissions and execute commands on an unlocked device.
To install malware, you need physical access to the device or the possibility of infection via SMS messages, email or push notification if the device has been jailbreaked or an older version of Android is used. FinSpy is actively used in targeted espionage, because an attacker can monitor the entire operation of a device. An attacker gains access to contacts, emails, SMS, calendar entries, GPS data, photos, saved files, voice call recordings and data from instant messengers, according to a detailed report.
The creators of FinSpy constantly monitor new ways to protect mobile devices and quickly update their program. They also identify the most popular applications among potential victims for more successful information gathering.
Users are advised not to leave mobile devices unlocked, not to tell anyone your password on it, install programs only from official app stores, not follow suspicious links from unknown numbers, block the ability to install programs from unknown sources, regularly check and immediately remove unknown apps, and also install reliable antivirus programs.
Kaspersky Lab has detected a new version of FinSpy spyware that can monitor all user actions on a mobile device. The malware collects information from instant messengers using encryption, such as Telegram, WhatsApp, Signal and Threema. The FinSpy implant for iOS can hide traces of a jailbreak, and the Android version contains an exploit to get root permissions and execute commands on an unlocked device.
To install malware, you need physical access to the device or the possibility of infection via SMS messages, email or push notification if the device has been jailbreaked or an older version of Android is used. FinSpy is actively used in targeted espionage, because an attacker can monitor the entire operation of a device. An attacker gains access to contacts, emails, SMS, calendar entries, GPS data, photos, saved files, voice call recordings and data from instant messengers, according to a detailed report.
The creators of FinSpy constantly monitor new ways to protect mobile devices and quickly update their program. They also identify the most popular applications among potential victims for more successful information gathering.
Users are advised not to leave mobile devices unlocked, not to tell anyone your password on it, install programs only from official app stores, not follow suspicious links from unknown numbers, block the ability to install programs from unknown sources, regularly check and immediately remove unknown apps, and also install reliable antivirus programs.