Alphabet Inc’s Google released a report yesterday (June 23) that said hacking tools from Italy-based RCS Lab were used to spy on Android and iOS smartphones in Italy and Kazakhstan, mistaking commercial spyware. Indicates increased anxiety about falling into the hands.
A blog post by Google’s Threat Analysis Group (TAG) states that RCS Labs has typically “used a slew of tactics including unusual drive-by downloads as initial infection vectors to target mobile users on both iOS and Android.” combination” was used.
RCS Lab said in a statement Reuters That it did not “participate in any activity conducted by concerned customers” while condemning the misuse of its products.
Google found that the hack originated from a unique link sent to the target. Once the link was clicked, the page attempted to cause the user to download and install a malicious application on an Android or iOS phone.
“In some cases, we believe that the actors worked with the target’s ISP to disable the target’s mobile data connectivity,” the blog said.
After the device is disabled, the attacker will send a link via SMS asking the target to install an application to restore its data connectivity.
Most of the applications turned out to be mobile carrier applications. When ISPs were not involved, the applications posed as messaging applications.
Milan-based RCS Labs, which was founded in 1993, states on its website that its tools are used by law enforcement agencies for “lawful interception” of private messages and contacts on targeted devices.
While RCS Lab claimed it had nothing to do with the hacks in Italy and Kazakhstan, Google TAG’s blog states that the commercial spyware industry is “from enabling the proliferation of dangerous hacking tools and weapons to governments”. was posing a threat to those who would not be able to develop these internal capabilities”.
Google notified Android users about infected devices and made changes to Google Play Protect to protect users.
Subscribe to our daily newsletter Back
