1 week Ago By Millie Turner
AN URGENT warning has been issued over two strains of malware hidden in mobile apps that is believed to be spying on behalf of China. The malicious software, dubbed MOONSHINE and BADBAZAAR, has been caught accessing microphones, cameras, messages, photos and location data, according to GCHQ’s National Cyber Security Centre (NCSC).GettyThe dodgy apps are imitating popular platforms like WhatsApp and Skype, according to cyber experts[/caption]Mobile users are completely unaware of the intrusion because the malware has been disguised with legitimate-looking apps.
The dodgy apps are imitating popular platforms like WhatsApp and Skype, according to cyber experts.More niche platforms like Tibet One and Audio Quran, which also carry the malware, have also been promoted online.Experts believe the software is being used to target specific individuals worldwide who are tied to issues considered by Beijing to pose a threat to its security.
The list of what Beijing considers a threat to its national security is extensive. The data being collected is “almost certainly of value” to the Chinese government, cyber experts warned.They added that such information could even facilitate the surveillance and harassment of the affected user.
Chinese hackers are also targeting civil society groups, NCSC cautioned.“Although BADBAZAAR and MOONSHINE have been observed targeting Uighur, Tibetan and Taiwanese individuals, there are other malware that target other minority groups in China,” the advisory read. “Citizens from co-sealing nations, in China and abroad, who are perceived to be supporting causes that threaten regime stability are almost certainly under threat from mobile malware such as BADBAZAAR and MOONSHINE.
“The capability to capture location, audio and photo data almost certainly provides the opportunity to inform future surveillance and harassment operations by providing real-time information on the target’s activity.”The NCSC, alongside the FBI and agencies in Australia, Canada, Germany, and New Zealand, have urged mobile users to follow four rules to remain safe online.The first, is that people must “stay mainstream” by only using trusted app stores and not sideloading apps from third-party sources onto their devices.
Mobile users must also “stay organised” by reviewing installed apps and permissions regularly.The third rule is to “stay in touch” by reporting suspicious files, while the fourth is to “stay safe” by checking shared files and links.How to spot a dodgy appDetecting a malicious app before you hit the 'Download' button is easy when you know the signs.
Follow this eight-point checklist when you’re downloading an app you’re unsure about:Check the reviews – be wary of both complaints and uniformly positive reviews by fake accounts.Look out for grammar mistakes – legitimate app developers won’t have typos or errors in their app descriptions.Check the number of downloads – avoid apps with only several thousand downloads, as it could be fake.
Research the developer – do they have a good reputation? Or, are totally fake?Check the release date – a recent release date paired with a high number of downloads is usually bad news.Review the permission agreement – this agreement gives permission for the app to take bits of your data, and fake apps often ask for additional data that is not necessary.Check the update frequency – an app that is updated too frequently is usually indicative of security vulnerabilities.
Check the icon – look closely, and don’t be deceived by distorted, lower-quality versions the icons from legitimate apps.All of this information will be available in both Apple’s App Store and the Google Play Store..
