Home Malware Programs Mac Malware ProjectSpy

ProjectSpy

Posted: April 27, 2020

ProjectSpy is the name of a piece of malware that was first spotted in April 2020, and it was identified as a mobile threat that targets both Android and iOS devices. It seems that the authors of the ProjectSpy malware opted to use a fake Coronavirus-themed application that goes by the name 'Coronavirus Updates.' Upon closer analysis of the corrupted code, cybersecurity experts managed to identify other applications that were not Coronavirus-themed, but still carried ProjectSpy's corrupted code – 'Wabi Music' and 'TikTik.'

All of the threatening applications contained different versions of ProjectSpy, but they had just about the same features:

  • Collect information from Threema, Facebook, WhatsApp and SIM card.
  • Obtain contact details, voice notes, accounts, images, call logs and other information.
  • Gather detailed data about the phone's hardware, software and configuration.
  • Use the camera to take pictures or record MP4 videos.
  • Send text messages.

The above features can be found in ProjectSpy's Android version. The iOS version, on the other hand, appeared to be dysfunctional – there seemed to be great differences in the way the program was coded, and this led malware researchers to the conclusion that the authors of ProjectSpy may have bought ready-to-use iOS modules instead of implementing their own corrupted code. Thankfully, their attempts have been a complete failure, and ProjectSpy's iOS version cannot run properly, therefore making it useless for now.

We advise you to be extra prudent when trying to use desktop or mobile applications used for Coronavirus statistics and information – cybercriminals are using the popularity of the subject to disguise various tactics and malware as Coronavirus-themed applications and websites. Naturally, the best way to keep yourself safe is to invest in a reputable security product for your computer and smartphone.

Loading...