Portuguese Spyware Compromises Thousands of Android Devices
A recent report from TechCrunch reveals that a Portuguese-language spyware called WebDetetive has compromised over 76,000 Android devices, primarily in Brazil. However, white hat hackers claim to have deleted user data from the spyware’s servers, potentially assisting thousands of users.
Key Points:
- Unnamed hackers discovered and exploited vulnerabilities in WebDetetive’s servers
- Hackers accessed user databases and downloaded records, including customer emails
- Hackers severed connections between victims’ devices and WebDetetive’s servers
- WebDetetive is a type of stalkerware, often used without consent for surveillance purposes
- Cache of stolen data provided to TechCrunch verified some device identifiers
The cache of stolen data obtained by the hackers contained information about WebDetetive customers and compromised devices, but did not include content from victims’ phones. It was also discovered that WebDetetive is linked to another spyware called OwnSpy, with similar code found in its Android app.
While the actions of the white hat hackers may have helped prevent further data theft, severing the connections without warning could inadvertently alert the abusers who installed the spyware, potentially putting victims in greater danger.
Hot Take:
The compromise and subsequent actions of the white hat hackers highlight the pervasive issue of stalkerware and the need for increased cybersecurity measures. While it’s encouraging that some user data may have been deleted, it’s crucial to address the larger issue of unauthorized surveillance software and protect individuals from potential harm.
By
By
By
By
By