Spyware-laden Telegram and Signal have been found on the Google Play Store, exposing millions of Android Users. These fake apps, dubbed “Evil Telegram,” compromised devices and stole user data…

Cybersecurity researchers found spyware-laden Telegram and Signal on the Google Play Store, exposing millions of Android users. Kaspersky researchers called these apps “Evil Telegram” to compromise Android devices and steal user data.

To attract users, spyware-infected apps claimed to use a distributed network of global data centers to perform faster than official versions. These fake Telegram apps had a localized interface and looked legitimate.

However, closer inspection revealed a crucial difference: these counterfeit versions contained an additional module that continuously monitored messenger application activities and sent large amounts of data to the spyware creators’ command-and-control server.

The spyware stole and transmitted user names, IDs, contacts, phone numbers, and chat messages. This unauthorized data collection threatened user privacy and security.

These rogue apps were modified copies of the official ones, despite their similarities. This subtle difference allowed them to bypass Google Play moderators and get millions of downloads before Google removed them.

This shows that even from trusted sources like the Google Play Store, app downloads should be cautious. Users should verify app legitimacy, read reviews, and avoid unofficial versions that promise improved performance or features, as they may be malicious.

The data breach and potential harm to affected users highlight the ongoing challenges posed by spyware and other malicious apps in the Android ecosystem. To mitigate such threats, continuous vigilance, strong security, and user education are needed.

In this rapidly changing digital landscape, cybersecurity is a top priority, and researchers and security experts must identify and combat new threats to protect user data and privacy.

Conclusion

Cybersecurity researchers discovered spyware-laden Telegram and Signal on the Google Play Store, exposing millions of Android users. These “Evil Telegram” apps claimed to use a global data center network to perform faster than official versions. However, closer inspection revealed that these counterfeit versions contained an additional module that monitored messenger activity and sent large amounts of data to the spyware creators’ command-and-control server. The spyware stole and transmitted user names, IDs, contacts, phone numbers, and chat messages, threatening user privacy and security. The data breach highlights the ongoing challenges posed by spyware and other malicious apps in the Android ecosystem, emphasizing the need for continuous vigilance, strong security, and user education to protect user data and privacy.

The post Millions of Android users exposed to fake Telegram spywareon Google Play appeared first on Times Applaud.