- Joined
- May 15, 2016
- Messages
- 14,570
- Likes
- 2,645
- Points
- 1,730
TikTok Pro contains full-featured spyware capable of stealing Facebook user credentials.
Security researchers at Zscaler have uncovered a new spy campaign against Android users, in which attackers are distributing the "Pro version" of TikTok amid fears of a possible application blocking in the US. Malware is capable of taking control of basic device functions - taking photos, reading and sending SMS messages, making phone calls, and launching applications. In addition, malware can hijack Facebook user credentials using phishing.
The malicious TikTok Pro app is spread by cybercriminals via SMS and WhatsApp messages, which prompts users to download the “latest version of TikTok” from a specific web address. In the first wave of distribution, the malware only asked for credentials and permission to use the functions of the Android device, including the camera and microphone. As a result, users were bombarded with ads.
In the second wave, cybercriminals began to distribute a new version of the application, which already contains "full-featured spyware with premium features that makes it easy to spy on users."
After installing and opening TikTok Pro, a fake notification is displayed on the device, which then disappears along with the application icon. The notification acts as a distraction while the malware lurks on the device and makes the user think the app is just malfunctioning.
In addition to taking control of smartphone functions such as taking photos, sending SMS messages, executing commands, taking screenshots, making phone calls, and launching other applications on the device, spyware can also steal Facebook login credentials - a unique feature that is not typical for these spy apps.
__________________
Security researchers at Zscaler have uncovered a new spy campaign against Android users, in which attackers are distributing the "Pro version" of TikTok amid fears of a possible application blocking in the US. Malware is capable of taking control of basic device functions - taking photos, reading and sending SMS messages, making phone calls, and launching applications. In addition, malware can hijack Facebook user credentials using phishing.
The malicious TikTok Pro app is spread by cybercriminals via SMS and WhatsApp messages, which prompts users to download the “latest version of TikTok” from a specific web address. In the first wave of distribution, the malware only asked for credentials and permission to use the functions of the Android device, including the camera and microphone. As a result, users were bombarded with ads.
In the second wave, cybercriminals began to distribute a new version of the application, which already contains "full-featured spyware with premium features that makes it easy to spy on users."
After installing and opening TikTok Pro, a fake notification is displayed on the device, which then disappears along with the application icon. The notification acts as a distraction while the malware lurks on the device and makes the user think the app is just malfunctioning.
In addition to taking control of smartphone functions such as taking photos, sending SMS messages, executing commands, taking screenshots, making phone calls, and launching other applications on the device, spyware can also steal Facebook login credentials - a unique feature that is not typical for these spy apps.
__________________