Malware on Google Play steals Viber photos and videos


Malware on Google Play steals Viber photos and videos

Symantec reports:

Symantec has discovered an app on Google Play that steals photos and videos from the popular social media app Viber. Beaver Gang Counter masquerades as a score keeping app for a popular card game but secretly searches for media files related to the Viber app and sends them to a remote server.

It’s easy to imagine who the personal photos and videos stolen by this malware could be used by online criminals for the purposes of blackmail, stalking, fraud, identity theft or just good old-fashioned voyeurism.

Interestingly, it seems that Beaver Gang Counter waited for instructions from a remote command and control (C&C) server before scooping up personal photos and videos. This functionality appears to have helped the malware waltz past the Google Play store’s vetting process.

Malware on the Android platform is a growing problem, but it’s even worse when it makes its way into the official Android app store.

Symantec says that Google has now removed the offending app and developer from Google Play, but one wonders how long it will be before someone else attempts something similar.

Tags: , , ,

Share this article:

   Join thousands of others and sign up to our free "GCHQ" newsletter.

Smashing Security podcast
Check out "Smashing Security", the award-winning weekly audio podcast, with Graham Cluley, Carole Theriault, and special guests from the world of information security.

"It's brilliant!" • "Three people having fun in an industry often focused on bad news" • Winner of the Best Security Podcast 2018

Latest episodes:
Listen on Apple Podcasts Listen on Google Podcasts

, , ,

One Response

  1. David L

    June 29, 2016 at 1:58 pm #

    Well, this is the latest “auto-rooting” malware to make its way past google playstore defenses.
    And it’s not going to get any better, as the bad guys keep improving the ways they can hide & execute. The only reason people aren’t suing google, is they typically blame the device manufacture, and or are just not knowledgeable enough to know who to blame. Many times, the store they got the device from, or the carrier will swap out the phone with a refurbished one.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.