King and Crown Prince offer condolence to Iranian president over the deadly port explosion    stc reports strong first-quarter 2025 results with 11% rise in net profit    Virgin Atlantic celebrates one month of nonstop service between London and Riyadh    Saudi Awwal Bank records SR2.1 billion net profit after zakat and income tax for 1Q25    Mahmoud Abbas appoints Hussein Al-Sheikh as PLO vice president in key succession move    Saudi Arabia's entertainment sector attracts 76 million visitors in 2024    Third round of US-Iran nuclear talks concludes with cautious optimism    Multiple casualties reported after vehicle drives into crowd at Vancouver street festival    Duran leads Al Nassr past Yokohama Marinos into AFC Champions League Elite semi-finals    Al Ahli cruise past Buriram into AFC Champions League Elite semi-finals    Saudi Arabia offers condolences to Iran following deadly Bandar Abbas port explosion    Saudi Arabia deports 12,866 illegal residents in a week    SFDA clears first 44-ton medical shipment for Hajj pilgrims    Ministry of Hajj issued over 150,000 Nusuk cards for the Hajj of 2025    Saudi orchestra to perform at Sydney Opera House in May    Al Hilal thrash Gwangju to reach AFC Champions League Elite semi-finals    Saudi Theater Commission launches its Work and Learn Project in UK    The season has begun — and one comment shook us all    Average life expectancy in Saudi Arabia rises to78.8 years    Famed Philippine film star Nora Aunor dies at 71    Pakistani star's Bollywood return excites fans and riles far right    Veteran Bollywood actor Manoj Kumar dies at 87    Bollywood actress vindicated over boyfriend's death after media hounding    Grand Mufti rules against posting prayers and preaching in mosques on social media    Exotic Taif Roses Simulation Performed at Taif Rose Festival    Asian shares mixed Tuesday    Weather Forecast for Tuesday    Saudi Tourism Authority Participates in Arabian Travel Market Exhibition in Dubai    Minister of Industry Announces 50 Investment Opportunities Worth over SAR 96 Billion in Machinery, Equipment Sector    HRH Crown Prince Offers Condolences to Crown Prince of Kuwait on Death of Sheikh Fawaz Salman Abdullah Al-Ali Al-Malek Al-Sabah    HRH Crown Prince Congratulates Santiago Peña on Winning Presidential Election in Paraguay    SDAIA Launches 1st Phase of 'Elevate Program' to Train 1,000 Women on Data, AI    41 Saudi Citizens and 171 Others from Brotherly and Friendly Countries Arrive in Saudi Arabia from Sudan    Saudi Arabia Hosts 1st Meeting of Arab Authorities Controlling Medicines    General Directorate of Narcotics Control Foils Attempt to Smuggle over 5 Million Amphetamine Pills    NAVI Javelins Crowned as Champions of Women's Counter-Strike: Global Offensive (CS:GO) Competitions    Saudi Karate Team Wins Four Medals in World Youth League Championship    Third Edition of FIFA Forward Program Kicks off in Riyadh    Evacuated from Sudan, 187 Nationals from Several Countries Arrive in Jeddah    SPA Documents Thajjud Prayer at Prophet's Mosque in Madinah    SFDA Recommends to Test Blood Sugar at Home Two or Three Hours after Meals    SFDA Offers Various Recommendations for Safe Food Frying    SFDA Provides Five Tips for Using Home Blood Pressure Monitor    SFDA: Instant Soup Contains Large Amounts of Salt    Mawani: New shipping service to connect Jubail Commercial Port to 11 global ports    Custodian of the Two Holy Mosques Delivers Speech to Pilgrims, Citizens, Residents and Muslims around the World    Sheikh Al-Issa in Arafah's Sermon: Allaah Blessed You by Making It Easy for You to Carry out This Obligation. Thus, Ensure Following the Guidance of Your Prophet    Custodian of the Two Holy Mosques addresses citizens and all Muslims on the occasion of the Holy month of Ramadan    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Safeguarding devices from malicious surveillance tool
Published in The Saudi Gazette on 21 - 07 - 2019

Kaspersky experts have uncovered new versions of the advanced malicious surveillance tool FinSpy. The new implants work on both iOS and Android devices, can monitor activity on almost all popular messaging services, including encrypted ones, and hide their traces better than before. The tools allow attackers to spy on all device activities and exfiltrate sensitive data such as GPS location, messages, pictures, calls and more.
FinSpy is an extremely effective software tool for targeted surveillance that has been observed stealing information from international NGOs, governments and law enforcement organizations all over the world. Its operators can tailor the behavior of each malicious FinSpy implant to a specific target or group of targets.
The basic functionality of the malware includes almost unlimited monitoring of the device's activities: such as geolocation, all incoming and outgoing messages, contacts, media stored on the device, and data from popular messaging services like WhatsApp, Facebook messenger or Viber. All the exfiltrated data is transferred to the attacker via SMS messages or the HTTP protocol.
The latest known versions of the malware extend the surveillance functionality to additional messaging services, including those considered ‘secure', such as Telegram, Signal or Threema. They are also more adept at covering their tracks. For instance, the iOS malware, targeting iOS 11 and older versions can now hide signs of jailbreak, while the new version for Android contains an exploit capable of gaining root privileges – almost unlimited, complete access to all files and commands - on an unrooted device.
Based on the information available to Kaspersky, in order to successfully infect both Android and iOS-based devices, attackers need either physical access to the phone or an already jailbroken/rooted device. For jailbroken/rooted phones there are at least three possible infection vectors: SMS message, email, or push notifications.
According to Kaspersky telemetry, several dozen mobile devices have been infected over the past year.
"The developers behind FinSpy constantly monitor security updates for mobile platforms and tend to quickly change their malicious programs to avoid their operation being blocked by fixes. Moreover, they follow trends and implement functionality to exfiltrate data from applications that are currently popular. We observe victims of the FinSpy implants on a daily basis, so it's worth keeping an eye on the latest platform updates and install them as soon as they are released. Because, regardless of how secure the apps you use might be, and how protected your data, once the phone is rooted or jailbroken, it is wide open to spying," said Alexey Firsh, security researcher at Kaspersky Lab.
To avoid falling victim to FinSpy, Kaspersky researchers advise users:
• Do not leave your smartphone or tablet unlocked and always make sure nobody is able to see your pin-code when you enter it
• Do not jailbreak or root your device since it will make an attacker's job easier
• Only install mobile applications from official app stores, such as Google Play
• Do not follow suspicious links sent to you from unknown numbers
• In your device settings, block the installation of programs from unknown sources
• Avoid disclosing the password or passcode to your mobile device, even with someone you trust
• Never store unfamiliar files or applications on your device, as they could harm your privacy
• Download a proven security solution for mobile devices, such as Kaspersky Internet Security for Android. — SG


Clic here to read the story from its source.