Google Play Store is once again the in the news for a security problem. While on one side there are apps that could save your life someday, on the other side three applications have once again managed to fall between the cracks and were actually malware.
It's far from a revelation but the Google Play Store is suffering from a small security problem. Last February, Google had to remove 700,000 applications considered malicious. A household made possible thanks to the use of artificial intelligence which indicated above all that 25% of applications were dangerous on the platform. In short, not really reassuring. All the more so when the household does not seem to have been done 100% yet.
In a survey, McAfee, the computer security specialist said he discovered at least three problematic applications. At the origin of these, we discover a group of North Korean developers. The purpose of these applications was to hunt down deserters from the dictatorship. To succeed in getting their hands on them, proposals were sent to Facebook to test applications not yet launched. A preview that turned out to be a fatal trap.
Once the applications were installed, they collected the photos, SMS, and contacts of the victims. It is unclear, however, whether the recovered data identified deserters as intended by the creators. Data collected by malicious apps was then stored online on Dropbox and Yandex.
The group of developers behind these applications has been identified. They are named "Sun Team". Well known security specialists, it is however his first successful foray into the Play Store. They would not be linked to the Lazarus group. This one linked to the South Korean government had notably been at the origin of the hack of Sony in 2014.
Apps have now been removed from the Google Play Store and steps should be taken to increase security. Still, the Play Store is suffering more and more often from this kind of news, which ruin the image of the platform, but boasting as the safest sector.
North Korean malicious applications
It's far from a revelation but the Google Play Store is suffering from a small security problem. Last February, Google had to remove 700,000 applications considered malicious. A household made possible thanks to the use of artificial intelligence which indicated above all that 25% of applications were dangerous on the platform. In short, not really reassuring. All the more so when the household does not seem to have been done 100% yet.
In a survey, McAfee, the computer security specialist said he discovered at least three problematic applications. At the origin of these, we discover a group of North Korean developers. The purpose of these applications was to hunt down deserters from the dictatorship. To succeed in getting their hands on them, proposals were sent to Facebook to test applications not yet launched. A preview that turned out to be a fatal trap.
A well-known hacker team
Once the applications were installed, they collected the photos, SMS, and contacts of the victims. It is unclear, however, whether the recovered data identified deserters as intended by the creators. Data collected by malicious apps was then stored online on Dropbox and Yandex.
The group of developers behind these applications has been identified. They are named "Sun Team". Well known security specialists, it is however his first successful foray into the Play Store. They would not be linked to the Lazarus group. This one linked to the South Korean government had notably been at the origin of the hack of Sony in 2014.
Apps have now been removed from the Google Play Store and steps should be taken to increase security. Still, the Play Store is suffering more and more often from this kind of news, which ruin the image of the platform, but boasting as the safest sector.