A new mobile spyware called LianSpy has been discovered targeting Android smartphones. Newsbytes reports that this malware operates secretly in the background, invisible on the home screen.
LianSpy has been active for at least three years, mainly targeting users in Russia. However, its techniques could be used worldwide.
The spyware’s main goal is to monitor user activity on their Android device. It steals call logs, sends installed apps to its servers, and records the user’s screen without any visible warning.
To avoid detection, LianSpy uses root privileges to bypass Android’s notification alerts. This allows it to covertly record audio and video, as reported by bleepingcomputer.
“LianSpy uses su binary with a modified name to gain root access. The malware samples we analyzed attempt to locate a mu binary in the default su directories,” explains the Kaspersky report.
“This indicates an effort to evade root detection on the victim’s device. Acquiring superuser rights with such a strong reliance on a modified binary suggests that the spyware was likely delivered through a previously unknown exploit or physical device access.”
The Sun points out that to stay safe, download only necessary apps from trusted sources, such as legitimate companies or brands. Regularly updating your device’s operating system is also crucial, as new security features can help prevent malware infections.
As hackers become more sophisticated, ongoing vigilance and improved security measures from both users and device makers are essential. LianSpy may spread to other regions or platforms if left unchecked.
Response From Android Security Team
According to a statement from the Android Security Team, “We are aware of the LianSpy malware and are working diligently to protect our users. We encourage all Android users to download apps only from trusted sources like the Google Play Store and to keep their devices updated with the latest security patches.”
Image credit: Wikimedia