This Android spyware is posing as an antivirus app to steal your photos and passwords — how to stay safe
The LunaSpy Android spyware program was reported on in a recent Kaspersky blog post which revealed that the spyware has been infiltrating phones since at least February of this year. Allegedly, LunaSpy can be sent via messaging apps and sold as an antivirus program and sometimes as a banking protection app.
The spyware pretends to scan your device for viruses to trick you into granting permissions to the app. However, doing so enables it to steal data, track you, and even record audio and video.
While it pretends to run antivirus scans, LunaSpy is actually swiping passwords, recording your screen, and even running commands on your phone. Kaspersky even found unused code that would allow it to steal your photos.
If you're data is stolen via LunaSpy, it's reportedly sent to over 150 command and control servers. These servers are then used by cybercriminals to communicate with and control infected devices.
A spyware or malware infection can come from clicking on malicious links, downloading attachments in emails from unknown senders or through piracy. However, one of the most common ways to be infected is through both official and unofficial app stores.
In the LunaSpy case, it can be traced back to malicious links. With that in mind, you need to be extremely careful putting new apps on your Android phone and especially ones recommended by others through messages on social media or over text.
Get instant access to breaking news, the hottest reviews, great deals and helpful tips.
If you haven't heard of an app before, look for it in the Google Play Store and read reviews as well as check its ratings first. Since these can both be faked though, you'll want to look for external reviews on other sites. Video reviews are especially helpful as they give you a chance to see the app in action.
For Android phones, you want to make sure that Google Play Protect is enabled on your devices
Even good apps can go bad when injected with malicious code, we recommend limiting the number of apps you have installed overall just to be safe. Fewer apps means less risk that you've downloaded a malicious one or a legitimate app that has been taken over by hackers.
For Android phones, you want to make sure that Google Play Protect is enabled on your devices. It's a free and built-in security app that scans your existing apps and any new ones you download for malware and other malicious activity. You might also want to consider running one of the best Android antivirus apps alongside it for additional protection.
Malicious apps aren't going anywhere, and suspicious links are only one prong in hackers' attempts to get sensitive data. However, if you pause before tapping on a strange link and limit the number apps on your phone, your chances of getting infected go down significantly.
Additionally, you'll want to discuss these safety practices with your younger and older family members and friends since not clicking suspicious links and investigating any new apps before you download them is key to keeping your loved ones safe from hackers.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Android Authority
an hour ago
- Android Authority
Find Hub is the next Google app to get an Expressive coat of paint (APK teardown)
Andy Walker / Android Authority TL;DR We've conducted a teardown of Google's Find Hub app and discovered a variety of visual changes. These tweaks are broadly in line with Google's push to adopt the Material 3 Expressive style. Google's Find Hub is your one-stop shop for tracking your devices, accessories, and even loved ones. Now, it looks like Google is bringing some Material 3 Expressive changes to this app as well. We conducted a teardown of the latest version of the Find Hub app (version 3.1.399-3) and managed to enable a variety of visual changes. These tweaks are all in line with Google's Material 3 Expressive style. You can view the screens below. Current New Current New Current New Current New For starters, the Device details page (screens one and two) now shows a centered image of your device. We also have larger, bolder headers, while the factory reset button is now encased in that distinctive pill-shaped box. Don't want to miss the best from Android Authority? Set us as a preferred source in Google Search to support us and make sure you never miss our latest exclusive reports, expert analysis, and much more. The contact info page (screens three and four) has seen the biggest changes. Google has ditched the 'Contact info' header in favor of 'Enter phone number and a message.' Furthermore, the device image and displayed email address have been removed, while the message box is much larger. Find Hub's map view has also undergone some changes, as we can see in the second row of images. The bottom sheet no longer shows pictures of your devices. However, the map view now shows your device images on the map itself instead of a generic device image. The settings and refresh buttons in the bottom sheet have also been tweaked and are now circular buttons. In any event, this isn't a groundbreaking design overhaul by any means. But it does suggest that Google is putting plenty of effort into ensuring that its Material 3 Expressive design covers as many of its apps as possible. That's welcome news for those of us who remember Google's relatively slow progress when it came to dark mode. This tweaked design isn't the only thing we found in Find Hub this week. It looks like you can soon add a home screen shortcut for specific people who are sharing their location with you. That's handy if you want a quick way to track a child or another loved one without wading through the app. We also recently got a better idea of how satellite-based location sharing will work. ⚠️ An APK teardown helps predict features that may arrive on a service in the future based on work-in-progress code. However, it is possible that such predicted features may not make it to a public release. Follow
Business Insider
an hour ago
- Business Insider
Telegram CEO Pavel Durov reveals the 3 pieces of advice he got from his dad, an expert in Ancient Rome
Pavel Durov, the founder and CEO of Telegram, shared three pieces of advice his dad gave him for leading the messaging app. "A month ago, my father — a leading expert in Ancient Roman literature — turned 80. I asked what advice I should pass to the next generation," the Russian entrepreneur wrote in a post on X on Thursday. Valery Durov was head of classical philology — the study of language in historical sources — at St Petersburg State University until 2013, the year Pavel cofounded the encrypted messaging service with his brother Nikolai. Durov shared his father's advice on the 12th anniversary of Telegram's founding. He said his father's first tip was to lead by example because, "People — especially kids — follow what you do, not what you say." "Watching my father work tirelessly on numerous books and scientific papers showed me and my brother the meaning of dedication and inspired us to work hard too," Durov added. Durov said his father's second piece of advice was to focus on the positive. "Growing up in post-war Leningrad, my father learned to control emotions to be a positive force for his family, colleagues, and society," Durov wrote. "He taught me to frame thoughts in ways that bring the most good, even in hard times." The tech billionaire said his father's final advice stemmed from his study and translation of figures like Julius Caesar and Seneca. Valery Durov advised prioritising conscience, his son wrote on X, because he believed a person's moral compass, "unlike intelligence or creativity, is the ultimate human quality that will not lose value even in the age of AI," he said. Durov said in March that the app has a billion active users and called WhatsApp "a cheap, watered-down imitation of Telegram." Durov was arrested in France last August over claims Telegram was being used by criminals to facilitate money laundering, drug trafficking, and other offenses. He later said the app had faced some "growing pains" that made it easier for criminals to abuse but added, "Claims in some media that Telegram is some sort of anarchic paradise are absolutely untrue."
Android Authority
an hour ago
- Android Authority
I'd pay for a decoy PIN and profile on my Android phone, and I'm not alone
Rita El Khoury / Android Authority A few days ago, my colleague Calvin shared an interesting fact about GrapheneOS: The custom ROM allows him to set a duress PIN that completely erases the phone when he enters it, including encryption keys and the eSIM partition. It's a very drastic privacy measure that lets anyone protect their data if they're being forced to hand over or unlock their phone when they don't want to do it. I love that the feature exists for those who think they might need it, even if it's through a custom ROM, but as many commenters pointed out on Calvin's article, this is too drastic for most of us. Instead, what several commenters and I would like is more akin to a decoy PIN that opens a sandboxed version of my profile. And I'm not alone. Several of you want exactly that and would even pay for it. Rita El Khoury / Android Authority Another option would be to make multiple users on Android accessible from the same PIN unlock screen, and we'd be golden. I'm surprised this feature isn't yet a part of Android, especially when it could benefit everyone, not just privacy freaks, including families that share a tablet at home. Do you want a duress or decoy PIN on Android? 0 votes Duress. Let me erase my entire phone with 4 digits! NaN % Decoy. Switching to a harmless profile is good enough for me. NaN % Why not both? Let me pick. NaN % I don't see a need for either of these. NaN % A duress PIN is too much; a decoy PIN is a simpler solution Rita El Khoury / Android Authority Even though I'm fascinated by the idea of setting up a kill switch on my phone, I think it's an extreme measure that very few, if any, people will ever need or use. It's an overkill solution that leaves room for potential forgetfulness and misuse. If you choose a strong PIN, you might forget about it the very moment you need it. If you choose a weak PIN, like 0000 or 1234, you'll risk someone (a kid, most likely) wiping your phone and data by mistake if they pick up your phone and try to guess your code. Someone suggested choosing a decoy PIN that differs by one number from their primary PIN, but I think that's even worse. One finger slip and my data is poof, gone. Better never use my phone with oily or sweaty fingers! What also worries me about duress PINs is that they might trigger violence on the side of the person forcing me to unlock my phone. Who knows what they might do when they realize I erased everything? Erasing the entire phone under duress sounds like a perfect solution, but it's too nuclear and might cause problems. A decoy PIN and profile make more sense to me. A decoy PIN would behave a bit differently. Instead of erasing my phone, it would either unlock a sandboxed version of my profile with all crucial apps (banking, files, photos) hidden, or it would unlock under a different user and keep my primary account and data hidden and encrypted. For the former, Google would need to figure out how to privately and effectively sandbox parts of the OS, which may not be the easiest option. For the latter, it would be on the (very invested and tech literate) user to choose whether they want to do the work to create a separate profile and believable account. Personally, I imagine setting this up with a relatively unused Google account, and keeping a few apps and bits of data there with no real value. If I'm ever forced to unlock my phone, I could enter this decoy PIN, open a decoy profile, and let them explore that. No reason for them to suspect that I'm hiding something or that I've erased data and evidence. Look, I know that, technically, in the case of police investigations or targeted assault from violent criminals, no duress PIN or decoy PIN can guarantee that you'll come out unscathed or that your data won't be obtained in some other manner. But most of us are normal people who live boring old lives. There's no logical reason we should be afraid of these situations. What worries me, personally, is more on the scale of petty modern thieves who might demand access to my financial apps. And in those cases, keeping the banking and money apps away under a main profile while the decoy profile houses nothing of the sort seems like a good level of protection to me, without going too far in the cloak-and-dagger mentality. I liken it a bit to using a duress code on my alarm system. Instead of triggering the sirens around the house, entering this secondary code disarms the system but sends a silent notification to my emergency contacts saying that I was forced to disarm. It's an invisible security measure and doesn't stress out the aggressor, which is what I like about it. Some countries even impose this in their alarm system regulations. Android has what it takes to make multi-PIN and profile switching easy Rita El Khoury / Android Authority Android already supports multiple users and profiles. You can set them up under Settings > System > Users and have multiple people (or your own multiple accounts) access their apps, files, photos, and data separately. But the current system is still very basic. If I pick up my phone now, I first need to check which user is selected before I enter the PIN. If I enter my secondary PIN on my main user profile, I get an error. I don't know why Android can't be smart enough, like any keypad or biometric entry system in this vast universe, to understand that different PINs, fingerprints, or faces unlock different users with different privileges, without the need to manually switch users beforehand. Android's lockscreen should behave like any keypad or face recognition entry system in the world and automatically recognize different users without manually switching first. That would be the basis of a decoy PIN-profile setup, but it would also make Android more user-friendly for families or couples who share one tablet with multiple users. No need to teach little Lucas that he has to turn on the screen, drop the notification shade, tap the user switcher, pick his name, and then enter his PIN so he can play Minecraft on the family tablet. Just turn on the screen and enter his PIN, and Android would know exactly which profile to unlock. Rita El Khoury / Android Authority There are other minor changes that would need to happen on Android to make this more compatible with a decoy PIN-profile situation. For instance, no big user-switching animation (see photo above) that shows exactly what is happening. The whole idea is to hide the subterfuge, not advertise it on the entire display. We'd also need an option to hide the user account picker at least in the most visible parts of the UI, like the drop-down notification shade. That's, uh, the exact opposite of what Google has done with the very visible, very obvious multi-user widget. Regardless, most of the work is already done in Android. There is native support for multiple users, and the encryption is strong enough to keep them separate. All we need is a few nips and tucks, and those of us who want to could start using multiple users to create a decoy profile. I hope Google makes those changes soon, or, if it really wants to create a tighter privacy sandbox, I hope it does the work to let us sequester parts of the OS under duress while pretending to unlock the whole system. Either way, there's too much of our personal data in our phones today, and having to resort to custom ROMs to properly protect it is not a real solution. Don't want to miss the best from Android Authority? Set us as a preferred source in Google Search to support us and make sure you never miss our latest exclusive reports, expert analysis, and much more. Follow
