Something I thought would interest a few of you

Ok for starters let me say....maybe this isnt DN related per se....mods my bad if it need to be deleted all good.

But I believe it has alot to do with OPSEC in a way.

Soooo....lately in some of my spare time i've been going threw my phone lately (Not a burner just regular cell for everyday shit). Mostly checking out what permissions certain apps had and security settings stuff like that. And noticed some things that seemed kinda sketchy to me.

This all started after i tried to kill a system app that just sounded off to so i looked into that.

Which led me to turning on developer mode.... again found a few things which seemed pretty strange....the main one being this:

went to Device storage in developer mode - turned on view hidden folders - opened device storage - android - data- which led me to com.skype.raider

This just sounded weird...raider...why? Sooo i googled it and came across this site. The article is 2 years old and all but i still feel like its very relevant today.

https://citizenlab.org/2014/06/backdoor-hacking-teams-tradecraft-android-implant/

My impression after reading this is that my phone may have been injected with...if not this...then something similar to what they talk about. Not just because of this one file but a few others that just made no sense to me what they where until i read this and searched these files too.

Now i know obv if your smart you arent using your regular cell for anything other then regular stuff....but this should still be a concern for a few reasons. One being its ability to associate you with other phones...like..a burner.

Plus no one wants LE or anyone else for that matter doing what this states they have the ability to do.

It's a long read but i suggest atleast checking it out...if not atleast turn on developer mode and see if you notice anything sketchy.

TL:DR hacking service that can be paid for to give full root access to your phone


Comments


[5 Points] jjcooli0h:

see any files saved by the program? like in

 

If you can get the object file uploaded to some file hosting service or whatever, I'd be happy to take a look at it and see what's up-


[4 Points] sapiophile:

Be careful about rooting your device as people are suggesting here - doing so may inadvertently give the malware root access that it previously did not have, and then you have absolutely zero chance of actually removing it.


[2 Points] dragonhits:

you should always have root before doing anything less than reputable on your phone. dont pay to have it rooted, you can do it yourself and its fairly simple.

https://www.xda-developers.com/ is probably the best source of information for all things related to android development/hacking.


[0 Points] 4mmcXpert:

Lol don't up anything, if you're sketchy root the device and remove all rights and delete, even if it's a system app you should be able to remove it if properly rooted. Now if you still find the folder, on a new device make a new account, and don't use the infected device for your Skype info, as always reset ALL your passwords.