Malware on Google Play steals Viber photos and videos

Graham Cluley

Malware on Google Play steals Viber photos and videos

Malware on Google Play steals Viber photos and videos

Symantec reports:

Symantec has discovered an app on Google Play that steals photos and videos from the popular social media app Viber. Beaver Gang Counter masquerades as a score keeping app for a popular card game but secretly searches for media files related to the Viber app and sends them to a remote server.

It’s easy to imagine who the personal photos and videos stolen by this malware could be used by online criminals for the purposes of blackmail, stalking, fraud, identity theft or just good old-fashioned voyeurism.

Interestingly, it seems that Beaver Gang Counter waited for instructions from a remote command and control (C&C) server before scooping up personal photos and videos. This functionality appears to have helped the malware waltz past the Google Play store’s vetting process.

Malware on the Android platform is a growing problem, but it’s even worse when it makes its way into the official Android app store.

Symantec says that Google has now removed the offending app and developer from Google Play, but one wonders how long it will be before someone else attempts something similar.

Graham Cluley Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.

One Reply to “Malware on Google Play steals Viber photos and videos”

  1. Well, this is the latest "auto-rooting" malware to make its way past google playstore defenses.
    https://blog.lookout.com/blog/2016/06/27/leveldropper/
    And it's not going to get any better, as the bad guys keep improving the ways they can hide & execute. The only reason people aren't suing google, is they typically blame the device manufacture, and or are just not knowledgeable enough to know who to blame. Many times, the store they got the device from, or the carrier will swap out the phone with a refurbished one.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Never miss a thing. Sign up for the free GCHQ newsletter from Graham Cluley.
GET EMAIL UPDATES