The leading provider of cybersecurity solutions Check Point Research (CPR) had tracked down a new Malware, which disguised itself as the Netflix application, luring the consumer by offering a free Netflix subscription.
According to the CPR analyzers, this “wormable” is found on Google’s Play Store, named “FlixOnline”. It is capable to steal information from the user’s Messenger apps, installed on the Android smartphone.
What can this Malware do:
Once you installed this Malware it will request you the notification and battery optimization permission which is:
“FlixOnline will be able to read all your notifications, including personal information such as contact names and the content of messages you received. It will also able to dismiss the notification or activate the buttons they contain.
This also gives the app the ability to Do not disturb on or off the changing setting related to it.”
If you ignored this message and allow this malicious app, it will able to do the following things mentioned below-
- Track your WhatsApp message
- Reply to your messages (outspread forgery messages in your Messanger App)
- Read notifications and can disable them
- Enable the Battery Optimizations prevents the malware from being shut down.
- It is capable to spread itself through the contacts in your Android device.
How many consumers are Affected:
As per the report, this Malware is active for about two months and had been affected over 500 users.
Google has been informed about this malicious application. In response, Google has removed this app from the Play Store.
How to prevent this kind of Malware:
It’s not possible to be completely protected from Malware and Viruses, but we can prevent it by be choosy when downloading apps, and download only from trusted app stores. That usually blocks you from coming across malware-infected apps.
If you discovered any symptoms of infection from Malware and Viruses on your Android smartphone. Just uninstalled the suspicious application and reset your login passwords.
Huawei fixed a dangerous Bluetooth bug in September 2021 update
With the release of the September 2021 Security Patch details, Huawei highlights the bugs and their fixes for the Huawei and Honor devices. It’ll fix various issues in the system alongside a Bluetooth bug that could harm a user in several ways.
The latest security patch includes a medium-level bug fix identity as CVE-2021-37039 on the smartphones running on EMUI 11.0.0, EMUI 10.1.1, Magic UI 4.0.0, Magic UI 3.1.1 Android skins. Once an attacker successfully exploits cross this Bluetooth bug, it may cause a serious Bluetooth DoS.
What is Bluetooth DoS:
The Bluetooth system in any device can be the mean of DoS (Denial of service) attracts and cloud seriously harm the victim. In BT DoS, the attacker or hacker frequently requests to pair the target’s Bluetooth device with his in order to access the personal info of the soon-to-be victim.
However, Huawei has timely recognized this flaw and release the patch fix. Once it reaches the device holders, they will get input verification notice before their device is paired with the other. It’ll help them to avoid intruders.
In simple words, when someone wants to establish a BT connection with users, the device will ask for the owner’s permission before connecting the other device. If the second user is a known person, you can accept the request and can grant the permission. Furthermore, you can also deny it, if you don’t know the origin of the second device.
Although Huawei has released the patch details, the company hasn’t started the rollout process. It’s still releasing the June and July security patches not to talk about the August security release. Until the patch is available to the users, they can try to avoid enabling their BT, while not in use.
That’s all for now, Stay connected with us for more updates about Huawei.
WiFi and Battery Issues hits HarmonyOS 2 powered phones, and Huawei is rolling out fixes
HarmonyOS is a long-awaited operating system that made its debut at HDC 2019, and with initially lightened the smart screens smart TVs. However, Huawei quickly jumped into the improvement pipeline and made more improvements to this new OS.
In the following year, Huawei introduced HarmonyOS 2.0 at Huawei Developer Conference 2020 and announced its arrival for smartphones, which was a very surprising moment of the conference.
As last December became the first milestone in HarmonyOS 2’s journey in smartphones with the initiation of beta testing.
And on June 2, 2021, the Chinese tech giant finally made this operating system available on smartphones and began the public testing of the device.
Since then, Huawei is continuously upgrading eligible devices with a bunch of software updates and patches to improve the overall system stability, fixed bugs, and optimize the user experience.
Battery and WiFi issue:
But there are a few issues that hit hard HarmonyOS beta testers. These are related to WiFi and Battery performance.
According to the information, during the testing, a large number of beta testers have reported problems with WiFi connection and weak battery performance after upgrading to HarmonyOS 2. These kinds of problems are quite common in beta testing.
Thereafter, Huawei began the rollout of new software updates coupled with optimizations and fixes for issues in the WiFi and battery section. Aside from these, Huawei also sending optimizations for fingerprint scanner efficiency on support devices running HarmonyOS 2.
Furthermore, Huawei is planning a big upgrade that will rollout this month and expected to bring a number of new changes in the user interface as well as in features.
Learn more about HarmonyOS features in the linked article below.
These Android apps are putting users’ data at risk, be aware [May 2021]
When software technology has reached the pinnacle in today’s era, it has been impossible to always stay protected from the virus and bugs. Because our day starts with the software applications as well as ends with them.
In other words, we can say that the Android Apps has been making a great place in our daily routine. We also can’t deny that they have almost every piece of information about us.
However, somewhere we need to feed our data in the Android applications to activate them. But have you ever think that if your data has been safe or not?
According to the latest report generated from Check Point Research, many popular Android apps have been harming users’ personal information because of third-party applications’ inadequate security arrangements.
The report points out that 23 different apps obtainable from Google Play Store have individual security problems. Shockingly, these apps have recorded 50,000 to 10 million downloads, which show their popularity.
How the data has been misused:
The data collected and stores through these apps are used by the hackers to modify it and further spread the malware, phishing links, misleading contents, and notifications.
What Android apps have security problems:
The research firm detected 23 Android apps that have these security problems. Among them, 13 apps are said to work on real-time database information.
The report individually pointed out 5 different Android apps with thousands of registered users, which are described as follows-
- Astro Guru- AstroGuru is an astrology app that claims gives you the best of palm reading by actually scanning your palm. It has over 10 million installs
- iFax- This app allows you to send faxes as you would from a fax machine. It’s using by more than 5 million people & 20,000 companies.
- Logo Maker- This graphic design app has more than 170,000 signups. The agency noticed that it can access user names, account IDs, emails, and passwords.
- Screen Recorder- With more than 10 million downloads it can track the users’ activity.
- T’Leva- This free app that allows you, in the passenger version, to comfortably call for a taxi based on location, has more than 50,000 downloads. It can obtain the location data, full names, and phone numbers.
How to prevent from:
Well, there is no permanent way to be safe from these phenomena, only the precaution steps can help in avoiding them.
- In case you are using any of these applications, uninstall them
- Try to use two-factor authentication
- Set different passwords for different accounts
- Try not to feed your exact location
- Grant minimum permissions, if possible
- Use services that notify you of breaches and compromised accounts
These precautions can not completely avoid the transgression but can help in mitigating your risk of identity theft, fraud, and other scams.