Chinese authorities are using a new tool to hack seized phones and extract data
On Wednesday, mobile cybersecurity company Lookout published a new report — shared exclusively with TechCrunch — detailing the hacking tool called Massistant, which the company said was developed by Chinese tech giant Xiamen Meiya Pico.
Massistant, according to Lookout, is Android software used for the forensic extraction of data from mobile phones, meaning the authorities using it need to have physical access to those devices. While Lookout doesn't know for sure which Chinese police agencies are using the tool, its use is assumed widespread, which means both Chinese residents, as well as travelers to China, should be aware of the tool's existence and the risks it poses.
'It's a big concern. I think anybody who's traveling in the region needs to be aware that the device that they bring into the country could very well be confiscated and anything that's on it could be collected,' Kristina Balaam, a researcher at Lookout who analyzed the malware, told TechCrunch ahead of the report's release. 'I think it's something everybody should be aware of if they're traveling in the region.'
Balaam found several posts on local Chinese forums where people complained about finding the malware installed on their devices after interactions with the police.
'It seems to be pretty broadly used, especially from what I've seen in the rumblings on these Chinese forums,' said Balaam.
The malware, which must be planted on an unlocked device, and works in tandem with a hardware tower connected to a desktop computer, according to a description and pictures of the system on Xiamen Meiya Pico's website.
Balaam said Lookout couldn't analyze the desktop component, nor could the researchers find a version of the malware compatible with Apple devices. In an illustration on its website, Xiamen Meiya Pico shows iPhones connected to its forensic hardware device, suggesting the company may have an iOS version of Massistant designed to extract data from Apple devices.
Police do not need sophisticated techniques to use Massistant, such as using zero-days — flaws in software or hardware that have not yet been disclosed to the vendor — as 'people just hand over their phones,' said Balaam, based on what she's read on those Chinese forums.
Since at least 2024, China's state security police have had legal powers to search through phones and computers without needing a warrant or the existence of an active criminal investigation.
'If somebody is moving through a border checkpoint and their device is confiscated, they have to grant access to it,' said Balaam. 'I don't think we see any real exploits from lawful intercept tooling space just because they don't need to.'
A screenshot of the Massistant mobile forensic tool's hardware, taken from Xiamen Meiya Pico's official Chinese website.
Image Credits:Xiamen Meiya Pico
The good news, per Balaam, is that Massistant leaves evidence of its compromise on the seized device, meaning users can potentially identify and delete the malware, either because the hacking tool appears as an app, or can be found and deleted using more sophisticated tools such as the Android Debug Bridge, a command line tool that lets a user connect to a device through their computer.
The bad news is that at the time of installing Massistant, the damage is done, and authorities already have the person's data.
According to Lookout, Massistant is the successor of a similar mobile forensic tool, also made by Xiamen Meiya Pico, called MSSocket, which security researchers analyzed in 2019.
Xiamen Meiya Pico reportedly has a 40% share of the digital forensics market in China, and was sanctioned by the U.S. government in 2021 for its role in supplying its technology to the Chinese government.
The company did not respond to TechCrunch's request for comment.
Balaam said that Massistant is only one of a large number of spyware or malware made by Chinese surveillance tech makers, in what she called 'a big ecosystem.' The researcher said that the company tracks at least 15 different malware families in China.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Bloomberg
31 minutes ago
- Bloomberg
China's Top Rival to Tesla Bot Headlines Robot Games in Beijing
Unitree Robotics brought the spotlight-grabbing machines at Beijing's set piece robots competition on Friday, burnishing its reputation as a national champion for China's ambitions in developing AI and humanoids. The Hangzhou-based company's H1 robot won gold in a 1,500-meter humanoid race with a listed time of 6 minutes and 35 seconds, beating the average mile time on Strava by close to four minutes. Another Unitree machine also made it to the podium in a race that highlighted day one of the World Humanoid Robot Games.
Yahoo
2 hours ago
- Yahoo
Nvidia, AMD Agree to 15% Export Levy on China AI Chips
Nvidia (NVDA, Financials) and Advanced Micro Devices (AMD, Financials) will give the U.S. government 15% of revenue from certain AI chip sales to China in return for export licenses, the White House said Tuesday. Warning! GuruFocus has detected 5 Warning Signs with NVDA. The agreements cover Nvidia's China-specific H20 chip and AMD's equivalent processors, designed to meet U.S. export limits. President Donald Trump negotiated the deals, which could be extended to other firms. Trade lawyers say the plan may violate federal rules banning export taxes and limiting licensing fees, setting up potential legal fights. Nvidia's H20 had been projected to bring in over $8 billion in quarterly sales before the new restrictions. Investors will be watching whether Chinese chipmakers' push to replace U.S. tech eats into demand. This article first appeared on GuruFocus.
CNET
2 hours ago
- CNET
Beijing's 'Robot Olympics' Are Off and Running (and Falling)
China just turned a pair of Olympic venues into a playground for robots. The inaugural World Humanoid Robot Games, running from Aug. 15-17, opened Friday with soccer, sprints, kickboxing and table tennis, as well as a healthy number of face-plants. The games feature 280 robot teams from 16 countries and hundreds of bipedal bots vying for medals and whatever passes for bragging rights to robots. Events are split between two 2022 Winter Olympics landmarks: China's National Stadium and the National Speed Skating Oval. On the schedule: track and field, football (soccer to Americans), table tennis, and "scenario" trials such as medicine sorting, cleaning services and industrial handling—the kind of practical skills that robot-makers actually care about. Humanoid robots compete in the 5 vs. 5 soccer event on day one of the World Humanoid Robot Games in Beijing. VCG/Getty images The highlight reel revealed more chaos than control: robots colliding mid-match, sprinters crumpling mid-stride and kickboxers needing a reboot. But there were bright spots, too. Some bots popped back to their feet unassisted and even finished middle-distance runs as handlers puffed behind them. There was even a 1,500-meter race. Tickets ran 128–580 yuan (about $18–$81). The robot athletes are supplied by a combination of academia and industry, including China's Unitree and Fourier, with squads also from the US, Germany, Brazil, Japan and more. Organizers pitch the weekend as data collection under pressure, with sports forcing the robots to demonstrate balance, vision and decision-making, all of which later will translate over to the robot's work in factories, logistics and as home helpers. Humanoid robots run in the 1500-meter race at the World Humanoid Robot Games in Beijing. Kevin Frayer/Getty images China is using the Games to showcase its bet on embodied AI -- software linked to machines that can navigate human spaces. The country has poured billions of dollars into robotics and is planning a 1-trillion-yuan ( about $137 billion) fund for startups as part of a push to counter an aging-workforce crunch and compete in advanced manufacturing. Rules vary by event, but organizers say competitions span autonomous control and remote operation: either way, no mid-match "player swaps" for fresh robots are allowed. That means lots of stress testing on robot batteries, heat management and recovery behaviors in real-time chaos. The Associated Press has streamed some of the Games if you want to check it out. The event runs through Aug. 17.
