Skip to main content
  1. Home
  2. Mobile
  3. News

Your Android might be controlled by a malicious Twitter account

By

Twitter
Image used with permission by copyright holder
Twitter has quite the storied history of being used for both good and evil, what with its ability to connect millions of people and allow them to communicate faster than ever before. But now, it’s being used to form some particularly malevolent connections.

According to a recent blog post from ESET, there’s a new kind of mobile malware that makes use of Twitter to control an Android device-based botnet. It’s the first known mobile malware to use this kind of social media account instead of a command-and-control server to exercise its power over infected devices.

Recommended Videos

It’s called Twitoor, and this Trojan apparently lies dormant on Android devices, and awaits commands from a malicious Twitter account. Commands can either tell Twitoor to download and install other applications — generally of the data-stealing mobile banking malware variety — or switch to another command-and-control Twitter account.

Related

“Using Twitter instead of command-and-control servers is pretty innovative for an Android botnet,” said Lukas Stefanko, the ESET malware researcher who first found the app. Apparently, it’s been around for about a month, and while it can’t be downloaded from the Google Play store, experts think that devices are infected either with text messages or malicious URLs.

The use of social media networks in the botnet’s communication is rather creative, Stefanko admits, noting, “These communication channels are hard to discover and even harder to block entirely.” He added, “In the future, we can expect that the bad guys will try to make use of Facebook statuses or deploy LinkedIn and other social networks.”

So proceed with great caution, friends. Your Android could indeed be controlled by a rogue Twitter account. “Twitoor serves as another example of how cybercriminals keep on innovating their business,” Stefanko concluded. “The takeaway? Internet users should keep on securing their activities with good security solutions for both computers and mobile devices.”

Editors' Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
If you have one of these apps on your Android phone, delete it immediately
The app drawer on the Google Pixel 8 Pro.

The NSO Group raised security alarms this week, and once again, it’s the devastatingly powerful Pegasus malware that was deployed in Jordan to spy on journalists and activists. While that’s a high-profile case that entailed Apple filing a lawsuit against NSO Group, there’s a whole world of seemingly innocuous Android apps that are harvesting sensitive data from an average person’s phone.
The security experts at ESET have spotted at least 12 Android apps, most of which are disguised as chat apps, that actually plant a Trojan on the phone and then steal details such as call logs and messages, remotely gain control of the camera, and even extract chat details from end-to-end encrypted platforms such as WhatsApp.
The apps in question are YohooTalk, TikTalk, Privee Talk, MeetMe, Nidus, GlowChat, Let’s Chat, Quick Chat, Rafaqat, Chit Chat, Hello Chat, and Wave Chat. Needless to say, if you have any of these apps installed on your devices, delete them immediately.
Notably, six of these apps were available on the Google Play Store, raising the risk stakes as users flock here, putting their faith in the security protocols put in place by Google. A remote access trojan (RAT) named Vajra Spy is at the center of these app's espionage activities.

A chat app doing serious damage

Read more
How to use Android Recovery Mode to fix your phone or tablet
Pixel 3 recovery mode

Here's an unfun scenario: You've got one of the best Android phones or tablets, but things aren't working right. Typical virus scans and other troubleshooting fixes aren't working. It is time to use recovery mode. This mode allows you to reboot your system and get a fresh start without any viruses or other issues that were potentially causing you trouble.

Unfortunately, there's no one standard way to get into Recovery Mode. In other words, Samsung Galaxy phones and HTC phones have different pathways into the modes. Luckily for you, however, we have the most complete guide to entering Recovery Mode and you should be able to figure out how to get in on just about any device using the steps below.

Read more
Don’t update your Google Pixel phone — you might break it
A person holding the Google Pixel 8, showing the screen.

One of the reasons to buy a Google Pixel phone is to be first in line to receive software updates — from new Android versions to important security patches. Unfortunately, one of the latest updates from Google is breaking some Pixel phones.

Over the weekend, a Reddit user on the r/GooglePixel subreddit compiled a list of threads from nearly a dozen Pixel owners reporting issues with their phones after downloading the most recent January 2024 Google Play system update.

Read more