NordVPN sends your E-Mail and Google advertising ID to a tracking company (Iterable Inc.)
Plus the app uses 5 trackers:
- AppsFlyer
- Google Analytics
- Google CrashLytics
- Google Firebase Analytics
- Tune
All in all, this data (probably not limited to this) is sent:
- Device and manufacturer
- Battery level
- Google Advertising ID
- Gyroscope data
- Screen size
- LineageOS build version
- Connectivity
- Mobile operator
Source (german):
https://www.kuketz-blog.de/android-nordvpn-uebermittelt-e-mail-adresse-an-tracking-anbieter/
#nordvpn #vpn
Plus the app uses 5 trackers:
- AppsFlyer
- Google Analytics
- Google CrashLytics
- Google Firebase Analytics
- Tune
All in all, this data (probably not limited to this) is sent:
- Device and manufacturer
- Battery level
- Google Advertising ID
- Gyroscope data
- Screen size
- LineageOS build version
- Connectivity
- Mobile operator
Source (german):
https://www.kuketz-blog.de/android-nordvpn-uebermittelt-e-mail-adresse-an-tracking-anbieter/
#nordvpn #vpn
www.kuketz-blog.de
Android: NordVPN übermittelt E-Mail-Adresse an Tracking-Anbieter
Viele Nutzer schwören auf VPN-Dienstleister, um bspw. ihre Privatsphäre im Internet zu schützen oder Geo-Sperren zu umgehen. Ich warne schon…
Google to Appeal 50-Million-Euro French Data Consent Fine
Google said Wednesday it would appeal a record 50-million-euro fine imposed by France's data regulator for failing to meet the EU's strict new General Data Protection Regulation (GDPR).
"We've worked hard to create a GDPR consent process for personalised ads that is as transparent and straightforward as possible, based on regulatory guidance and user experience testing," the company said in a statement.
https://www.securityweek.com/google-appeal-50-million-euro-french-data-consent-fine
Read Via Telegram
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
Google said Wednesday it would appeal a record 50-million-euro fine imposed by France's data regulator for failing to meet the EU's strict new General Data Protection Regulation (GDPR).
"We've worked hard to create a GDPR consent process for personalised ads that is as transparent and straightforward as possible, based on regulatory guidance and user experience testing," the company said in a statement.
https://www.securityweek.com/google-appeal-50-million-euro-french-data-consent-fine
Read Via Telegram
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
National Data Privacy Day Is Wishful Thinking
You have to have a supreme sense of irony, or be in major denial, to call Monday, Jan. 28, Data Privacy Day.
Given the current state of big data collection and “sharing” (selling) by online giants and telcos, combined with the power of artificial intelligence (AI) and machine learning (ML) to draw intrusive inferences about us from all that data, it would be much more accurate to call it Privacy is Dead Day. Or Lack of Privacy Day.
https://www.forbes.com/sites/taylorarmerding/2019/01/23/national-data-privacy-day-is-wishful-thinking/#
📡@cRyPtHoN_INFOSEC_DE
You have to have a supreme sense of irony, or be in major denial, to call Monday, Jan. 28, Data Privacy Day.
Given the current state of big data collection and “sharing” (selling) by online giants and telcos, combined with the power of artificial intelligence (AI) and machine learning (ML) to draw intrusive inferences about us from all that data, it would be much more accurate to call it Privacy is Dead Day. Or Lack of Privacy Day.
https://www.forbes.com/sites/taylorarmerding/2019/01/23/national-data-privacy-day-is-wishful-thinking/#
"cRyPtHoN_INFOSEC Team wishes happy celebrating Data Privacy Day"📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
Google Urged the U.S. to Limit Protection For Activist Workers
While Google publicly supported employees who protested company policies, it quietly asked the government to narrow the right to organize over work email
https://www.bloomberg.com/news/articles/2019-01-24/google-urged-the-u-s-to-limit-protection-for-activist-workers
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
While Google publicly supported employees who protested company policies, it quietly asked the government to narrow the right to organize over work email
https://www.bloomberg.com/news/articles/2019-01-24/google-urged-the-u-s-to-limit-protection-for-activist-workers
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
NanoDroid v20.6 "Malachowski" is now available.
What's new?
- improved Uninstaller (System Mode)
- improved nanodroid-overlay script
- merged GmsCore info-menu (three-dot-menu in microG settings) by oF2pks
- fixed a push Messages Issue with custom microG build (thanks to Vavun for reporting the issue)
Download from Nanolx or AFH
https://forum.xda-developers.com/apps/magisk/module-nanomod-5-0-20170405-microg-t3584928/post78764628
#nanodroid #microg #installer
What's new?
- improved Uninstaller (System Mode)
- improved nanodroid-overlay script
- merged GmsCore info-menu (three-dot-menu in microG settings) by oF2pks
- fixed a push Messages Issue with custom microG build (thanks to Vavun for reporting the issue)
Download from Nanolx or AFH
https://forum.xda-developers.com/apps/magisk/module-nanomod-5-0-20170405-microg-t3584928/post78764628
#nanodroid #microg #installer
XDA Developers
[MODULE/SYSTEM] NanoDroid 20.6.20190126 (microG, pseudo-debloat, F-Droid + apps)
[MODULE/SYSTEM] NanoDroid 20.6.20190126 (microG, pseudo-debloat, F-Droid + apps) Magisk - Page 545
This Week In F-Droid is live on its (temporary) news website:
https://fdroid.gitlab.io/fdroid-news/posts/2019-01-25-twif-40-the-newpipe-broken-builds-edition/
Read everything about getting #newpipe to finally build as well as all the updates that happened in the last 2 weeks!
https://mastodon.technology/@fdroidorg
#fd #fdroid
https://fdroid.gitlab.io/fdroid-news/posts/2019-01-25-twif-40-the-newpipe-broken-builds-edition/
Read everything about getting #newpipe to finally build as well as all the updates that happened in the last 2 weeks!
https://mastodon.technology/@fdroidorg
#fd #fdroid
fdroid.gitlab.io
TWIF 40: The NewPipe Broken Builds edition
This Week In F-Droid 40, Week 4, 2019
In this edition: NewPipe and broken builds, and more than 5000 followers on Mastodon.
There are
20
new and
71
updated apps.
In this edition: NewPipe and broken builds, and more than 5000 followers on Mastodon.
There are
20
new and
71
updated apps.
👉The anonymization service Tor in numbers .👈
The non-profit organization The Tor Project, Inc., based in Seattle, USA, is behind the Tor anonymization service and thus also behind the goal-based Darknet. The Tor technology was developed in the mid-90s at the Naval Research Laboratory (NRL), a research institute of the US Army. In 2006, Tor became an independent non-profit organization. Since then, its budget has been largely funded by the US government.
According to the financial report, revenues in 2017 were around 4.1 million US dollars, about a quarter more than in 2015. The Tor Project had 21 employees, compared to only ten in 2015. The number of volunteers in the Tor Project remains unchanged at 3,000.
2.6 million US dollars were spent on personnel. The top earner in 2017 was the then managing director Shari Steele with an annual base salary of 175,000 US dollars. This was followed by President Roger Dingledine and Vice President Nick Mathewson, each with approximately $150,000. In addition, "other remuneration" varied in amount.
❗️The annual report divides the revenues for 2017 into various categories. Revenues from US government sources are the most important category, totaling 51 percent:
👉798,029 US dollars (19.5 percent) came from the Open Technology Fund (OTF), the world's largest donor to open source projects. The OTF is part of Radio Free Asia, a state-owned foreign station with an eventful history, which was founded as a spin-off of the
👉635,504 US dollars (15.5 percent) came from the Stanford Research Institute (SRI), formally an independent research institute. The report does not explain why it nevertheless appears in the category "US government sources". Earlier financial reports had declared the SRI grants as "pass through" funds of the Ministry of Defense. Were the SRI funds also "pass-through" funds of the Pentagon in 2017? "Yes, they were," says Stephanie Whited, communications director of the Tor Project, upon request.
👉548,151 US dollars (13.4 percent) was contributed by the National Science Foundation (NSF), the US government's research funding agency.
👉133,061 US dollars (3.2 percent) came from the State Department through the Bureau of Democracy, Human Rights and Labor Affairs.
👉Finally, 12,500 US dollars (0.3 percent) came from the ISC Counterpart International organization, which is mainly financed by subsidies from the USAID, the state development aid agency.
In the "Non-US government sources" category, the report includes a grant of USD 594,408 (14.5 percent) from the Swedish International Development Cooperation Agency, a development cooperation agency of the Swedish Foreign Ministry.
Then there are the categories "Corporate Sources" and "Private Foundations":
👉522,188 US dollars (12.7 percent) came from the Mozilla Foundation. The Tor browser is also based on the Firefox browser developed by Mozilla.
👉347,325 US dollars (8.5 percent) came from the New Venture Fund, which promotes civil society projects primarily in the USA and itself reveals little about its donors. According to research by the US magazine E&E News, the funds of the US fund come primarily from entrepreneurial and corporate foundations such as the Bill & Melinda Gates Foundation.
👉The search engine provider Duckduckgo contributed 25,000 US dollars (0.6 percent).
👉89,007 US dollars (2.2 percent) US dollars came from "other private foundations".
Source: https://www.heise.de/newsticker/meldung/Missing-Link-Von-Zwiebeln-Knoten-und-Moneten-Tor-in-Zahlen-4287404.html
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
The non-profit organization The Tor Project, Inc., based in Seattle, USA, is behind the Tor anonymization service and thus also behind the goal-based Darknet. The Tor technology was developed in the mid-90s at the Naval Research Laboratory (NRL), a research institute of the US Army. In 2006, Tor became an independent non-profit organization. Since then, its budget has been largely funded by the US government.
According to the financial report, revenues in 2017 were around 4.1 million US dollars, about a quarter more than in 2015. The Tor Project had 21 employees, compared to only ten in 2015. The number of volunteers in the Tor Project remains unchanged at 3,000.
2.6 million US dollars were spent on personnel. The top earner in 2017 was the then managing director Shari Steele with an annual base salary of 175,000 US dollars. This was followed by President Roger Dingledine and Vice President Nick Mathewson, each with approximately $150,000. In addition, "other remuneration" varied in amount.
❗️The annual report divides the revenues for 2017 into various categories. Revenues from US government sources are the most important category, totaling 51 percent:
👉798,029 US dollars (19.5 percent) came from the Open Technology Fund (OTF), the world's largest donor to open source projects. The OTF is part of Radio Free Asia, a state-owned foreign station with an eventful history, which was founded as a spin-off of the
CIA secret service during the Cold War and today reports to the U.S. Agency for Global Media.👉635,504 US dollars (15.5 percent) came from the Stanford Research Institute (SRI), formally an independent research institute. The report does not explain why it nevertheless appears in the category "US government sources". Earlier financial reports had declared the SRI grants as "pass through" funds of the Ministry of Defense. Were the SRI funds also "pass-through" funds of the Pentagon in 2017? "Yes, they were," says Stephanie Whited, communications director of the Tor Project, upon request.
👉548,151 US dollars (13.4 percent) was contributed by the National Science Foundation (NSF), the US government's research funding agency.
👉133,061 US dollars (3.2 percent) came from the State Department through the Bureau of Democracy, Human Rights and Labor Affairs.
👉Finally, 12,500 US dollars (0.3 percent) came from the ISC Counterpart International organization, which is mainly financed by subsidies from the USAID, the state development aid agency.
In the "Non-US government sources" category, the report includes a grant of USD 594,408 (14.5 percent) from the Swedish International Development Cooperation Agency, a development cooperation agency of the Swedish Foreign Ministry.
Then there are the categories "Corporate Sources" and "Private Foundations":
👉522,188 US dollars (12.7 percent) came from the Mozilla Foundation. The Tor browser is also based on the Firefox browser developed by Mozilla.
👉347,325 US dollars (8.5 percent) came from the New Venture Fund, which promotes civil society projects primarily in the USA and itself reveals little about its donors. According to research by the US magazine E&E News, the funds of the US fund come primarily from entrepreneurial and corporate foundations such as the Bill & Melinda Gates Foundation.
👉The search engine provider Duckduckgo contributed 25,000 US dollars (0.6 percent).
👉89,007 US dollars (2.2 percent) US dollars came from "other private foundations".
Source: https://www.heise.de/newsticker/meldung/Missing-Link-Von-Zwiebeln-Knoten-und-Moneten-Tor-in-Zahlen-4287404.html
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Your digital identity has three layers, and you can only protect one of them
Your online profile is less a reflection of you than a caricature.
Whether you like it or not, commercial and public actors tend to trust the string of 1s and 0s that represent you more than the story you tell them. When filing a credit application at a bank or being recruited for a job, your social network, credit-card history, and postal address can be viewed as immutable facts more credible than your opinion.
https://qz.com/1525661/your-digital-identity-has-three-layers-and-you-can-only-protect-one-of-them/
Read Via Telegram
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
Your online profile is less a reflection of you than a caricature.
Whether you like it or not, commercial and public actors tend to trust the string of 1s and 0s that represent you more than the story you tell them. When filing a credit application at a bank or being recruited for a job, your social network, credit-card history, and postal address can be viewed as immutable facts more credible than your opinion.
https://qz.com/1525661/your-digital-identity-has-three-layers-and-you-can-only-protect-one-of-them/
Read Via Telegram
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
Media is too big
VIEW IN TELEGRAM
📺 Goodbye Big Five (Week 1: Amazon)
Reporter Kashmir Hill spent six weeks blocking Amazon, Facebook, Google, Microsoft, and Apple from getting her money, data, and attention, using a custom-built VPN. Here’s what happened.
I am on a mission to live without the tech giants—to discover whether such a thing is even possible. Not just through sheer willpower but technologically, with the use of a custom-built tool that would literally prevent my devices from accessing these companies, and them from accessing me and my data.
https://gizmodo.com/i-tried-to-block-amazon-from-my-life-it-was-impossible-1830565336
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Reporter Kashmir Hill spent six weeks blocking Amazon, Facebook, Google, Microsoft, and Apple from getting her money, data, and attention, using a custom-built VPN. Here’s what happened.
I am on a mission to live without the tech giants—to discover whether such a thing is even possible. Not just through sheer willpower but technologically, with the use of a custom-built tool that would literally prevent my devices from accessing these companies, and them from accessing me and my data.
https://gizmodo.com/i-tried-to-block-amazon-from-my-life-it-was-impossible-1830565336
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Facebook pays teens to install VPN that spies on them | TechCrunch
https://techcrunch.com/2019/01/29/facebook-project-atlas/
https://techcrunch.com/2019/01/29/facebook-project-atlas/
TechCrunch
Facebook pays teens to install VPN that spies on them | TechCrunch
Desperate for data on its competitors, Facebook has been secretly paying people to install a "Facebook Research" VPN that lets the company suck in all of
Media is too big
VIEW IN TELEGRAM
📺 Goodbye Big Five (Week 2: Facebook)
Reporter Kashmir Hill spent six weeks blocking Amazon, Facebook, Google, Microsoft, and Apple from getting her money, data, and attention, using a custom-built VPN. Here’s what happened.
I am on a mission to live without the tech giants, to discover whether such a thing is even possible. Not just through sheer willpower but technologically, with the use of a custom-built tool that would literally prevent my devices from accessing these companies, and them from accessing me and my data.
https://gizmodo.com/i-cut-facebook-out-of-my-life-surprisingly-i-missed-i-1830565456
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Reporter Kashmir Hill spent six weeks blocking Amazon, Facebook, Google, Microsoft, and Apple from getting her money, data, and attention, using a custom-built VPN. Here’s what happened.
I am on a mission to live without the tech giants, to discover whether such a thing is even possible. Not just through sheer willpower but technologically, with the use of a custom-built tool that would literally prevent my devices from accessing these companies, and them from accessing me and my data.
https://gizmodo.com/i-cut-facebook-out-of-my-life-surprisingly-i-missed-i-1830565456
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Media is too big
VIEW IN TELEGRAM
📺 Goodbye Big Five (Week 3: Google)
Reporter Kashmir Hill spent six weeks blocking Amazon, Facebook, Google, Microsoft, and Apple from getting her money, data, and attention, using a custom-built VPN. Here’s what happened.
I am on a mission to live without the tech giants, to discover whether such a thing is even possible. Not just through sheer willpower but technologically, with the use of a custom-built tool that would literally prevent my devices from accessing these companies, and them from accessing me and my data.
https://gizmodo.com/i-cut-google-out-of-my-life-it-screwed-up-everything-1830565500
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Reporter Kashmir Hill spent six weeks blocking Amazon, Facebook, Google, Microsoft, and Apple from getting her money, data, and attention, using a custom-built VPN. Here’s what happened.
I am on a mission to live without the tech giants, to discover whether such a thing is even possible. Not just through sheer willpower but technologically, with the use of a custom-built tool that would literally prevent my devices from accessing these companies, and them from accessing me and my data.
https://gizmodo.com/i-cut-google-out-of-my-life-it-screwed-up-everything-1830565500
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Data Dealer, the bitingly clever game about surveillance & privacy
Check out our video trailer, play the demo (below) or sign up for the full version beta: Start with a fresh account and play right away!
"Spreads awareness about how some companies gather personal data and why others want to purchase it"
https://datadealer.com/
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
Check out our video trailer, play the demo (below) or sign up for the full version beta: Start with a fresh account and play right away!
"Spreads awareness about how some companies gather personal data and why others want to purchase it"
https://datadealer.com/
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
Data Dealer
Data Dealer: Privacy? Screw that. Turn the tables!
The gleefully sarcastic online game about collecting and selling personal data. Play now!
Weekly Update | 19.02.032
New Energized Protection Weekly Update is available to download.
Sorry for the delay everyone! I am back, and we are back! We will push two updates per week from now on.
And, we have also discontinued our mirror. (We had nothing else to do! 🙁)
🛠 CHANGES
- Updated Anudeep's Info and Quidsup New Repo Address.
- Added Quidsup Malware List.
- Whitelisted and Blacklisted Users' Requested Ones via Energized BOX Web App (https://app.energized.pro) and Github Issues.
- Merged Latest Active Sources.
Website (https://energized.pro/) | Github (https://go.energized.pro/github) | XDA (https://go.energized.pro/xda) | Magisk (https://go.energized.pro/xdamagisk) | Web App (https://app.energized.pro/) | Email -
Submit any blacklist or request for whitelist via Web App (https://go.energized.pro/si) or GIT Issue (https://go.energized.pro/si-git).
💝 SUPPORT US
If you are loving Energized Protection and our work, then consider donating. Even a little of your help goes a long way. You can also sponsor us to keep the project alive and running!
PayPal -
(https://paypal.me/pools/c/86ZbnsTbVN)bKash -
Thanks to URLBD (https://go.energized.pro/urlbd) for being our first platinum sponsor. Check out there complete web and hosting solutions.
- Be a Sponsor (https://energized.pro/support) | Donate (https://energized.pro/support) ~ Support The Project!
Stay Energized! ⚡️
New Energized Protection Weekly Update is available to download.
Sorry for the delay everyone! I am back, and we are back! We will push two updates per week from now on.
And, we have also discontinued our mirror. (We had nothing else to do! 🙁)
🛠 CHANGES
- Updated Anudeep's Info and Quidsup New Repo Address.
- Added Quidsup Malware List.
- Whitelisted and Blacklisted Users' Requested Ones via Energized BOX Web App (https://app.energized.pro) and Github Issues.
- Merged Latest Active Sources.
Website (https://energized.pro/) | Github (https://go.energized.pro/github) | XDA (https://go.energized.pro/xda) | Magisk (https://go.energized.pro/xdamagisk) | Web App (https://app.energized.pro/) | Email -
[email protected]
🐜 GOT ANY ISSUE?Submit any blacklist or request for whitelist via Web App (https://go.energized.pro/si) or GIT Issue (https://go.energized.pro/si-git).
💝 SUPPORT US
If you are loving Energized Protection and our work, then consider donating. Even a little of your help goes a long way. You can also sponsor us to keep the project alive and running!
PayPal -
[email protected] | Pool(https://paypal.me/pools/c/86ZbnsTbVN)bKash -
01706239988 | Paytm - 7780450270
Sponsor Thanks to URLBD (https://go.energized.pro/urlbd) for being our first platinum sponsor. Check out there complete web and hosting solutions.
- Be a Sponsor (https://energized.pro/support) | Donate (https://energized.pro/support) ~ Support The Project!
Stay Energized! ⚡️
❗️How Social Media is Killing your Oxytocin Levels and Keeping you from Being your Happiest Self
People are slowly and surely replacing face to face human interactions with the cheap thrills and immediate satisfaction of social media interaction.
https://medium.com/@whitneyvmorgan/how-social-media-is-killing-your-oxytocin-levels-and-keeping-you-from-being-your-happiest-self-89e327a375c3
#DeleteFacebook
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
People are slowly and surely replacing face to face human interactions with the cheap thrills and immediate satisfaction of social media interaction.
https://medium.com/@whitneyvmorgan/how-social-media-is-killing-your-oxytocin-levels-and-keeping-you-from-being-your-happiest-self-89e327a375c3
#DeleteFacebook
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
Various Google Play ‘Beauty Camera’ Apps Send Users Pornographic Content, Redirect Them to Phishing Websites and Collect Their Pictures
We discovered several beauty camera apps (detected as AndroidOS_BadCamera.HRX) on Google Play that are capable of accessing remote ad configuration servers that can be used for malicious purposes. Some of these have already been downloaded millions of times, which is unsurprising given the popularity of these kinds of apps. A large number of the download counts originated from Asia — particularly in India.
Technical Analysis
A user downloading one of these apps will not immediately suspect that there is anything amiss, until they decide to delete the app. Take, for example, the package com.beauty.camera.project.cloud, which will create a shortcut after being launched. However, it will hide its icon from the application list, making it more difficult for users to uninstall the app since they will be unable to drag and delete it. Furthermore, the camera apps use packers to prevent them from being analyzed.
❗️The fact that such apps get into Google's App Store at all is an absurdity. Obviously, the user cannot rely on the security mechanisms of Google Play. That's why you should always take a close look at the user ratings of apps before downloading them.
https://blog.trendmicro.com/trendlabs-security-intelligence/various-google-play-beauty-camera-apps-sends-users-pornographic-content-redirects-them-to-phishing-websites-and-collects-their-pictures/
#malware #Playstore #TrendMicro
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN
We discovered several beauty camera apps (detected as AndroidOS_BadCamera.HRX) on Google Play that are capable of accessing remote ad configuration servers that can be used for malicious purposes. Some of these have already been downloaded millions of times, which is unsurprising given the popularity of these kinds of apps. A large number of the download counts originated from Asia — particularly in India.
Technical Analysis
A user downloading one of these apps will not immediately suspect that there is anything amiss, until they decide to delete the app. Take, for example, the package com.beauty.camera.project.cloud, which will create a shortcut after being launched. However, it will hide its icon from the application list, making it more difficult for users to uninstall the app since they will be unable to drag and delete it. Furthermore, the camera apps use packers to prevent them from being analyzed.
❗️The fact that such apps get into Google's App Store at all is an absurdity. Obviously, the user cannot rely on the security mechanisms of Google Play. That's why you should always take a close look at the user ratings of apps before downloading them.
https://blog.trendmicro.com/trendlabs-security-intelligence/various-google-play-beauty-camera-apps-sends-users-pornographic-content-redirects-them-to-phishing-websites-and-collects-their-pictures/
#malware #Playstore #TrendMicro
📡 @cRyPtHoN_INFOSEC_DE
📡 @cRyPtHoN_INFOSEC_EN