Skip to main content
  1. Home
  2. Phones
  3. Computing
  4. Mobile
  5. News

The Google Play store hosted malware meant to steal from North Korean defectors

Add as a preferred source on Google

McAfee researchers have discovered that hackers with links to the North Korean regime managed to make Google complicit in stealing information from defectors from the nation. As per a recently published blog post, the Google Play store has apparently been playing host to at least three apps designed to collect data from specific individuals. Two of these apps were posing as security apps, while the third claimed to provide food ingredient information. But what they really did was steal information from devices and receive certain code that allowed them to further access data like photos, contact lists, and even text messages.

In most instances, McAfee found the apps were generally sent to select users, generally by contacting them via Facebook. By the time McAfee privately notified Google as to the existence of these apps, 100 folks had already downloaded them, and the apps had been live in the Google Play store for three months — from January to March. Alas, this highlights the shortcomings of Google’s filters that are intended to keep out malware.

Recommended Videos

The alleged actor behind these apps doesn’t appear to be a new player in the hacking scene. Back in January, McAfee noted that it had found malicious apps intended to infect North Korean journalists and defectors’ devices. The group behind these apps was subsequently named Sun Team, and is apparently the same group behind these latest apps.

At the very least, the apps were all linked to the same developer email address. Moreover, McAfee found that the words used in the control servers were common in North Korea, but not South Korea. There was also a North Korean IP address discovered in a test log file of some Android devices connected to account used to send out the malware. This has led researchers to believe that the attacks are based in the isolated nation.

“These features are strong evidence that the actors behind these campaigns are not native South Koreans but are familiar with the culture and language,” McAfee researchers wrote. “These elements are suggestive, though not a confirmation, of the nationality of the actors behind these malware campaigns.”

Lulu Chang
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
OnePlus’ North America and Europe chapter has officially come to an end
Existing owners will continue to receive software updates and warranty support, with the option to switch from OxygenOS to ColorOS down the line.
The rear of the OnePlus 15R, propped up on a wooden table.

After months of straight-up denying it, OnePlus just confirmed it’s tapping out of North America and Europe. In a community forum post, the company dressed up the news as a “proactive global strategy adjustment,” but for buyers in these markets, the outcome is straightforward. There will be one less brand to choose from the next time you go phone shopping.

Existing owners will get support, plus an optional software switch

Read more
Belkin’s new power bank can charge your phone and save you from stubbing your toes at 2am
Your next power bank could light the way to the bathroom
Furniture, Table, Lamp

Power banks serve a very simple yet handy purpose. Charge your accessories or phones in a pinch, while on the go. But every now and then, a model comes in with a little more style of functionality–like built-in cables or magnetic/wireless charging. Some can even charge up bigger gadgets like laptops.

But Belkin is doing something a bit different. The Belkin BoostCharge Pro Power Bank 10K with Motion Sensing Light has launched in China for 329 yuan, or approximately $49. Alongside its 10,000mAh battery and 45W USB-C charging, it carries a pop-up LED lamp that can illuminate a hotel room, bedside table, or dark hallway when it detects movement. 

Read more
AppleCare+ prices are going up for new Mac and iPad customers
Existing AppleCare+ subscribers avoid Apple’s latest price hike
MacBook Pro on Table

Apple has raised the price of AppleCare+ subscriptions for new Mac and iPad customers, adding another expense to hardware that already became considerably more expensive last month. AppleCare+ provides technical support and repair coverage for accidental damage and other eligible issues.

Monthly AppleCare+ plans for Macs and iPads now cost $0.50 more, while annual plans have increased by $5. Existing subscribers will continue paying their current rates, as the change only applies to new sign-ups.

Read more