BTC $63479.2080
ETH $3102.3210
BNB $553.9303
SOL $138.6944
stETH $3095.0573
XRP $0.4977
DOGE $0.1616
TON $6.5573
ADA $0.4609
AVAX $35.1800
wstETH $3604.0886
WBTC $63444.7835
TRX $0.1115
WETH $3097.1785
BCH $508.1534
DOT $6.7139
LINK $13.5848
MATIC $0.7078
UNI $7.2517
LTC $78.0969
ICP $12.3388
DAI $0.9999
CAKE $2.7613
RNDR $8.2936
FDUSD $0.9976
IMX $1.9531
ETC $26.4901
STX $2.5389
MNT $1.1217
TAO $525.3353
OKB $57.6303
FIL $6.0159
NEAR $5.2270
VET $0.0414
MKR $3079.1039
HBAR $0.0795
KAS $0.1206
WIF $2.7619
ATOM $8.1379
GRT $0.2535
CORE $2.6998
USDE $0.9998
XMR $123.1697
FET $2.0557
INJ $24.4523
XLM $0.1076
PEPE $0.0000
BTC $63479.2080
ETH $3102.3210
BNB $553.9303
SOL $138.6944
stETH $3095.0573
XRP $0.4977
DOGE $0.1616
TON $6.5573
ADA $0.4609
AVAX $35.1800
wstETH $3604.0886
WBTC $63444.7835
TRX $0.1115
WETH $3097.1785
BCH $508.1534
DOT $6.7139
LINK $13.5848
MATIC $0.7078
UNI $7.2517
LTC $78.0969
ICP $12.3388
DAI $0.9999
CAKE $2.7613
RNDR $8.2936
FDUSD $0.9976
IMX $1.9531
ETC $26.4901
STX $2.5389
MNT $1.1217
TAO $525.3353
OKB $57.6303
FIL $6.0159
NEAR $5.2270
VET $0.0414
MKR $3079.1039
HBAR $0.0795
KAS $0.1206
WIF $2.7619
ATOM $8.1379
GRT $0.2535
CORE $2.6998
USDE $0.9998
XMR $123.1697
FET $2.0557
INJ $24.4523
XLM $0.1076
PEPE $0.0000
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Malicious SMS app steals phone numbers from thousands of victims


    The malicious application was discovered by cybersecurity researcher Maxim Ingrao, who works for Evina. It's called Symoo and has over 100,000 downloads on Google Play. According to the researcher, after installing the application, victims' SIM cards are used as "virtual numbers" to create accounts on Microsoft, Google, Instagram, Telegram and Facebook websites.

    The operation of the malicious application is simple – after installation, it requests access to send and read SMS messages, which does not arouse suspicion among the victims, since Symoo is advertised as “a simple application for sending SMS”. The fun begins after installation:

    • The first screen asks the user for their phone number, after which a fake loading screen appears;
    • The “download” process is delayed, allowing remote operators to send a one-time code from the desired service to the victim’s phone number and send it back to the operators;
    • After the process is completed, the application freezes without providing the user with the promised functionality.

    And even though deceived users delete the non-working application, this does not improve the situation, because their phone number has already been used to create other people's accounts on various online platforms.

    In addition, Maxim Ingrao discovered that Symoo sends SMS messages from victims’ phones to the domain used by the “ActivationPW – Virtual numbers” application, which allows the user to “rent” a phone number for 50 cents and use it to create an account on the desired site. It is worth noting that this application has already been removed from Google Play, but Symoo has not.

    Author DeepWeb
    Australia decriminalizes psilocybin, LSD and ecstasy
    Meta steals personal data even if you don't use social media

    Comments 0

    Add comment