Global Hack News Report: – The Security researchers find the most powerful android spyware tools that hackers control your android device remotely
SKYGOFREE:-The Android spyware has been Designing for the target user and it is believed to have been targeting a million of the number used for the past year Russian Cyber security firm lab publish a report where declare the skygofree implant has loss different novel features previously unseen in the wild,
The additional new update include location-based audio recording using an android microphone, etc. The use of Android Accessibility Services to steal WhatsApp.apk and another social messenger etc., and the ability to connect infected devices to malicious Wi-Fi networks controlled by attackers.
SKYGOFREE is mainly distributed through fake web pages mimicking leading mobile network operators, most of which have been registered by the attackers since June 24th of 2015 —when the distribution campaign was most active in 2015, according to Kaspersky’s telemetry data.
Skygofree: Powerful Android Spyware Tool
Skygofree mainly works on after install they hides its icon and starts background services to conceal further actions from the user. Skygofree also includes a self-protection feature, preventing services from being killed
October of 2017, Skygofree are used by multi-stage spyware tool that gives attackers full remote control of the infected device using a reverse shell payload and a command and control (C&C) server architecture, etc.
Skygofree includes multiple exploits to escalate privileges for root access, granting it the ability to execute most sophisticated payloads on the infected Android devices
Such as payload allows the implant to execute shellcode and steal data belonging to other
Applications installed on the targeted devices, including Facebook, WhatsApp, Line, and Viber, etc.
“There are multiple, exceptional capabilities: usage of multiple exploits for gaining root privileges, a complex payload structure, [and] never-before-seen surveillance features,” the researchers said.
Skygofree’s control (C&C) server also allows attackers to capture pictures and videos remotely, seize call records and SMS, as well as monitor the users’ geolocation, calendar events and any information stored in the device’s memory.
The spyware uses “the Android Accessibility Service to get information directly from the displayed elements on the screen, so it waits for the targeted application to be launched and then parses all nodes to find text messages,” Kaspersky said.
Kaspersky researchers also found a variant of Skygofree targeting Windows users, suggesting the authors’ next area of interest is the Windows platform.
The best way to prevent yourself from being a victim is to avoid downloading apps via third-party websites, app stores or links provided in SMS messages or emails.