As if it is not the beginning of a spy movie between countries, but a very real one. This is exactly what Ars Technica explained. Apparently, from August 2022, an Android app called iRecorder Screen Recorder started secretly recording from all devices where it had been downloaded.
Miura 1, the first Spanish rocket
The application was previously just another registration application when it came out in September of 2021. However, everything changed a few months later, when it received a renewal in August. Then he started recording 60 seconds of audio every 15 minutes and transmitting those files, via an encrypted connection, to the developer’s server.
All this is now known thanks to the work of Essential Security Against Evolving Threats (ESET) researcher Luke Stefanko, who blogged his findings. Stefanko says the app was updated in August 2022 to include malicious code “in the open source AhMyth Android RAT (Remote Access Trojan). It had about 50,000 downloads at the time and was warned and removed from the Play Store.
The problem of fraudulent applications, which are not new to Apple or Google cards, is a bigger problem in this case though. We are talking about recording apps that can have all kinds of private information.
In addition, the researcher himself is the most involved in this type of problem: these applications that are converted to the dark side, after having them for a while, using the permissions that were granted to them from the beginning, to collect. information yours and send it to the developer to do whatever he wants.