November 25, 2024 05:29 (IST)
Follow us:
facebook-white sharing button
twitter-white sharing button
instagram-white sharing button
youtube-white sharing button
Mahayuti routs MVA in Maharashtra, INDIA retains Jharkhand; Priyanka's triumphant poll debut | How can Mahayuti win over 200 seats? Sanjay Raut cries foul over Maharashtra mandate | 'Third World War has begun:' Ex-Ukraine military commander-in-chief Valery Zaluzhny | UK-India Free Trade Agreement negotiations to resume in early 2024 | UK can arrest Benjamin Netanyahu if he visits country based on ICC warrant | Centre to send over 10,000 additional soldiers to violence-hit Manipur amid fresh violence | Chhattisgarh: 10 Maoists killed during encounter with security forces in Sukma | Baba Siddique murder case: Arrested Akashdeep Gill used a labourer's hotspot to evade tracking, say police | Donald Trump picks 'smart and tough' Pam Bondi as new US Attorney General after Matt Gaetz withdraws | Canadian government denies media report that claims PM Modi knew of Khalistani leader Nijjar's killing
Malware
Photo Courtesy: Unsplash

Researchers find new Android backdoor which infected 338,300 devices via malicious apps

| @indiablooms | Sep 08, 2024, at 11:44 pm

Experts believe an Android backdoor named 'Xamalicious' has infected approximately 338,300 devices via malicious apps on Android's app store Google Play.

McAfee, a member of the App Defense Alliance, discovered 14 infected apps on Google Play, with three having 100,000 installs each, reported Bleeping Computer.

Even though the apps have since been removed from Google Play, users who installed them since mid-2020 might still carry active Xamalicious infections on their phones, requiring manual scans and cleanup, the news portal reported.

McAfee's telemetry data showed most of the infections were reported from devices in the United States, Germany, Spain, the U.K., Australia, Brazil, Mexico, and Argentina.

What is Xamalicious?

Xamalicious is a .NET-based Android backdoor embedded (in the form of 'Core.dll' and 'GoogleService.dll') within apps developed using the open-source Xamarin framework, making the analysis of its code more challenging, reported Bleeping Computer.

Upon installation, it requests access to the Accessibility Service, enabling it to perform privileged actions like navigation gestures, hide on-screen elements, and grant additional permissions to itself, the news portal reported.

Support Our Journalism

We cannot do without you.. your contribution supports unbiased journalism

IBNS is not driven by any ism- not wokeism, not racism, not skewed secularism, not hyper right-wing or left liberal ideals, nor by any hardline religious beliefs or hyper nationalism. We want to serve you good old objective news, as they are. We do not judge or preach. We let people decide for themselves. We only try to present factual and well-sourced news.

Support objective journalism for a small contribution.