1. Home
  2. Mobile
  3. News

Your Android might be controlled by a malicious Twitter account

By

Image used with permission by copyright holder
Twitter has quite the storied history of being used for both good and evil, what with its ability to connect millions of people and allow them to communicate faster than ever before. But now, it’s being used to form some particularly malevolent connections.

According to a recent blog post from ESET, there’s a new kind of mobile malware that makes use of Twitter to control an Android device-based botnet. It’s the first known mobile malware to use this kind of social media account instead of a command-and-control server to exercise its power over infected devices.

Recommended Videos

It’s called Twitoor, and this Trojan apparently lies dormant on Android devices, and awaits commands from a malicious Twitter account. Commands can either tell Twitoor to download and install other applications — generally of the data-stealing mobile banking malware variety — or switch to another command-and-control Twitter account.

“Using Twitter instead of command-and-control servers is pretty innovative for an Android botnet,” said Lukas Stefanko, the ESET malware researcher who first found the app. Apparently, it’s been around for about a month, and while it can’t be downloaded from the Google Play store, experts think that devices are infected either with text messages or malicious URLs.

The use of social media networks in the botnet’s communication is rather creative, Stefanko admits, noting, “These communication channels are hard to discover and even harder to block entirely.” He added, “In the future, we can expect that the bad guys will try to make use of Facebook statuses or deploy LinkedIn and other social networks.”

So proceed with great caution, friends. Your Android could indeed be controlled by a rogue Twitter account. “Twitoor serves as another example of how cybercriminals keep on innovating their business,” Stefanko concluded. “The takeaway? Internet users should keep on securing their activities with good security solutions for both computers and mobile devices.”

Editors' Recommendations

Topics
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Your Android phone just got an update that could save your life

When you’re in an emergency, every second matters. And if you already have your health information on your phone, it’s going to be even easier than ever to get that critical information over to operators. Now, when you make an emergency call on your Android phone, your health information can be sent directly to emergency services when you call 911.

This new feature update is made possible due to Google partnering with RapidSOS to allow data from Android ELS (Emergency Location Service) to be given to emergency contacts and first responders. The type of data that we’re talking about is critical medical information that can save your life, such as blood type, emergency contacts, and severe allergies. This is all information that the user sets up and is stored locally on their Android device.

Read more
Your Android phone is getting lots of fun new features this month

It’s a big day for Android updates, as Google has announced more than a dozen new features spread across multiple devices and apps — including a host of fun new ways to make Google Messages more visually exciting and to mark a significant milestone in its use.

Ready to see everything that's new? Let's dig in.
Google Messages

Read more
Don’t update your Pixel phone — a new Android update might break it

Android 14 introduced a host of convenient additions to Google’s Pixel phones, but a recent minor update has utterly broken the storage system for some users. Specifically, owners of the Google Pixel 6, Google Pixel 6 Pro, and Google Pixel 6a who run multiple profiles on their phones are reporting that their phones no longer have access to the storage pipeline for the main profile.

That means users are locked out of accessing the stored media and find themselves unable to add new files as well. A few users have reported on Reddit and Google’s official community forum that they can’t even click images using the camera app because it flashes an insufficient storage warning message. A few others say trying to install an APK package also returns a similar storage writing roadblock.

Read more