BTC $70614.7035
ETH $3511.7004
BNB $620.2579
SOL $173.0218
XRP $0.6097
stETH $3507.5030
DOGE $0.1974
TON $7.0340
ADA $0.5814
AVAX $46.2782
wstETH $4079.6154
DOT $8.3856
BCH $610.3232
WETH $3506.2796
WBTC $70620.3107
TRX $0.1214
LINK $17.6767
MATIC $0.8810
UNI $9.1130
LTC $98.3227
ICP $15.5376
CAKE $3.7378
DAI $0.9997
IMX $2.5624
ETC $33.6826
RNDR $9.0476
STX $3.0152
FIL $8.0739
MNT $1.3057
TAO $634.6650
NEAR $6.7707
HBAR $0.0996
ATOM $10.7689
VET $0.0473
OKB $56.7850
WIF $3.4067
FDUSD $1.0024
KAS $0.1425
MKR $3339.9801
PEPE $0.0000
GRT $0.3118
THETA $2.9461
INJ $31.7489
FET $2.5268
XLM $0.1299
XMR $133.8901
USDE $1.0008
BTC $70614.7035
ETH $3511.7004
BNB $620.2579
SOL $173.0218
XRP $0.6097
stETH $3507.5030
DOGE $0.1974
TON $7.0340
ADA $0.5814
AVAX $46.2782
wstETH $4079.6154
DOT $8.3856
BCH $610.3232
WETH $3506.2796
WBTC $70620.3107
TRX $0.1214
LINK $17.6767
MATIC $0.8810
UNI $9.1130
LTC $98.3227
ICP $15.5376
CAKE $3.7378
DAI $0.9997
IMX $2.5624
ETC $33.6826
RNDR $9.0476
STX $3.0152
FIL $8.0739
MNT $1.3057
TAO $634.6650
NEAR $6.7707
HBAR $0.0996
ATOM $10.7689
VET $0.0473
OKB $56.7850
WIF $3.4067
FDUSD $1.0024
KAS $0.1425
MKR $3339.9801
PEPE $0.0000
GRT $0.3118
THETA $2.9461
INJ $31.7489
FET $2.5268
XLM $0.1299
XMR $133.8901
USDE $1.0008
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Look out! Chinese spyware found in Uighur language apps


    Applications are infected with two new malware - BadBazaar and Moonshine.

    Nearly 30% of Uyghur-language Android apps posted on social networks or downloaded from third-party stores since July this year have been infected with two new malware that allows hackers to access private photos, messages, and contacts, according to a study by Lookout.

    Lookout researcher Christina Balaam noted that various types of malware have been targeting Uyghurs for the purpose of cyberespionage for about 10 years, but new campaigns are much broader in scope and more sophisticated. According to her, the amount of malware has increased, and it has also become more difficult to detect.

    Since Google Play is blocked for Android users in China, many download apps from "unofficial stores" or links on other platforms that infect the device. According to Lookout, even those Uyghurs who live outside of China have been compromised and have removed Chinese apps.

    Experts have attributed the attacks to China, as some of the infrastructure overlaps with China's past campaigns to spy on the Uyghurs. In addition, the Mandarin language was found on one of the servers used in the attacks.

    Many of the infected applications contained popular services such as Uighur dictionaries and keyboard translation. Malicious applications also included battery utilities, radios, video players, GPS, and other programs. According to Balaam, links to this software were distributed in Telegram and other messengers.

    Lookout identified the new BadBazaar malware that was discovered in late 2021, as well as the Moonshine malware that was uncovered in 2019 by the University of Toronto's Citizen Lab.

    By monitoring 3 different command and control (C&C) servers associated with Moonshine, the researchers confirmed that at least 637 devices had infected applications installed. There is no similar data for BadBazaar, as specialists were unable to access the infrastructure associated with it.

    The researchers shared their results with Google, Apple Inc. and other companies prior to their publication, and sent requests to remove servers hosting malicious infrastructure. According to Balaam, deleting infected apps will remove the malware.

    Apple representatives did not respond to a request for comment. In turn, Google said that the detected malicious applications were never published and were rejected during the verification process.

    Author DeepWeb
    LockBit extends deadline for Continental ransom
    An English school has become another victim of the infamous Vice Society.

    Comments 0

    Add comment