silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,207
Full report by ESET:A chat application for Android claiming to be a secure messaging platform comes with spying functionality and stores user data in an unsecure location that is publicly available.
Welcome Chat targets users from a specific region of the world and relies on open source code for recording calls, stealing text messages, and tracking.
The developers of Welcome Chat promoted it as a secure communication solution that is available from the Google Play store. Its intended audience are Arabic-speaking users. It’s important to note that some countries in the Middle East ban this type of apps.
Researchers at cybersecurity company ESET found that the app delivers more than the advertised chat functions and it was never part of the official Android store. [...]
The researchers say that monitoring the communication with other Welcome Chat users is at the core of this malicious app, which is complemented by the following malicious actions:
- exfiltrate sent and received text messages
- steal call history log
- steal the victim’s contact list
- steal user photos
- exfiltrate recorded phone calls
- send the GPS location of the device along with system info
Welcome Chat as a secure messaging app? Nothing could be further from the truth
ESET research uncovers a malicious operation that spies on Android users via Welcome Chat, an app posing as a secure chat service available in Google Play.
www.welivesecurity.com