Teacher
Professional
- Messages
- 2,670
- Reaction score
- 780
- Points
- 113
How to identify a compromise and get rid of an annoying malware?
According to the latest data from TechCrunch journalists, the spy software for Android called TheTruthSpy, which is available for open download to everyone, has a number of vulnerabilities that make information from tens of thousands of malware-infected devices available not only to would-be stalkers who decided to use an illegal application, but also to any enthusiasts with sufficient technical knowledge..
Recently, two groups of hackers independently discovered and exploited a vulnerability that allows mass access to stolen data from victims mobile devices directly from TheTruthSpy servers.
A Swiss hacker under the pseudonym "Maya Arson Crymew" in her blog reported that the SiegedSec and ByteMeCrew groups identified and exploited a vulnerability in TheTruthSpy in December 2023, which allowed them to gain access to stolen data. It is noteworthy that TheTruthSpy has already been hacked several times before.
The hacker groups said they would not publicly disclose the data they received due to its high sensitivity. Despite this, Crymew provided some of TheTruthSpy's data to TechCrunch reporters for verification and analysis, which included unique IMEI IDs and advertising IDs of tens of thousands of recently compromised Android smartphones.
The verification confirmed the authenticity of the data, which indicates that TheTruthSpy continues to actively spy on a large number of victims in various regions, including Europe, India, Indonesia, the United States and the United Kingdom.
To help users determine whether their devices have been compromised by the TheTruthSpy malware, TechCrunch has added new data to its service that will help them find out if they have been hacked.
If your device is hitting the database, you should check if the malware is still installed in the system. To do this, you need to restart your smartphone in safe mode and carefully go through the list of installed software.
Any suspicious apps whose purpose is unknown to you, which have a strange name or missing icons, can be a disguised malware. Antivirus software from well-known companies can greatly help in identifying and removing the "uninvited guest".
In extreme cases, you should resort to resetting the device to factory settings or completely flashing it, so you can get rid of the malware for sure.
A TechCrunch investigation has revealed that TheTruthSpy is backed by Vietnamese startup 1Byte, which made millions of dollars from its spy operation by using fake US documents to create Stripe and PayPal accounts.
After the investigation, PayPal and Stripe suspended the accounts of the spyware manufacturer. However, despite all the obstacles, TheTruthSpy continues to actively promote surveillance of thousands of people.
As long as the malware remains online, the security and privacy of its victims, both past and present, remains at risk. Not only because of the ability of TheTruthSpy to invade the digital life of a person, but also because this spy service cannot prevent the leakage of stolen data to the Internet.
This story once again demonstrates how dangerous such spyware programs can be, both for individuals and for society as a whole. On the one hand, they grossly violate a person's right to privacy and confidentiality of personal data. On the other hand, they themselves are vulnerable to hacking and leakage of this most confidential data.
Thus, the use of this kind of spyware will never lead to anything good. It only worsens the already difficult situation with the protection of personal data in the modern digital world. This means that the only reasonable and moral choice for everyone is to stop using spyware and respect the right of others to privacy.
According to the latest data from TechCrunch journalists, the spy software for Android called TheTruthSpy, which is available for open download to everyone, has a number of vulnerabilities that make information from tens of thousands of malware-infected devices available not only to would-be stalkers who decided to use an illegal application, but also to any enthusiasts with sufficient technical knowledge..
Recently, two groups of hackers independently discovered and exploited a vulnerability that allows mass access to stolen data from victims mobile devices directly from TheTruthSpy servers.
A Swiss hacker under the pseudonym "Maya Arson Crymew" in her blog reported that the SiegedSec and ByteMeCrew groups identified and exploited a vulnerability in TheTruthSpy in December 2023, which allowed them to gain access to stolen data. It is noteworthy that TheTruthSpy has already been hacked several times before.
The hacker groups said they would not publicly disclose the data they received due to its high sensitivity. Despite this, Crymew provided some of TheTruthSpy's data to TechCrunch reporters for verification and analysis, which included unique IMEI IDs and advertising IDs of tens of thousands of recently compromised Android smartphones.
The verification confirmed the authenticity of the data, which indicates that TheTruthSpy continues to actively spy on a large number of victims in various regions, including Europe, India, Indonesia, the United States and the United Kingdom.
To help users determine whether their devices have been compromised by the TheTruthSpy malware, TechCrunch has added new data to its service that will help them find out if they have been hacked.
If your device is hitting the database, you should check if the malware is still installed in the system. To do this, you need to restart your smartphone in safe mode and carefully go through the list of installed software.
Any suspicious apps whose purpose is unknown to you, which have a strange name or missing icons, can be a disguised malware. Antivirus software from well-known companies can greatly help in identifying and removing the "uninvited guest".
In extreme cases, you should resort to resetting the device to factory settings or completely flashing it, so you can get rid of the malware for sure.
A TechCrunch investigation has revealed that TheTruthSpy is backed by Vietnamese startup 1Byte, which made millions of dollars from its spy operation by using fake US documents to create Stripe and PayPal accounts.
After the investigation, PayPal and Stripe suspended the accounts of the spyware manufacturer. However, despite all the obstacles, TheTruthSpy continues to actively promote surveillance of thousands of people.
As long as the malware remains online, the security and privacy of its victims, both past and present, remains at risk. Not only because of the ability of TheTruthSpy to invade the digital life of a person, but also because this spy service cannot prevent the leakage of stolen data to the Internet.
This story once again demonstrates how dangerous such spyware programs can be, both for individuals and for society as a whole. On the one hand, they grossly violate a person's right to privacy and confidentiality of personal data. On the other hand, they themselves are vulnerable to hacking and leakage of this most confidential data.
Thus, the use of this kind of spyware will never lead to anything good. It only worsens the already difficult situation with the protection of personal data in the modern digital world. This means that the only reasonable and moral choice for everyone is to stop using spyware and respect the right of others to privacy.
