Skip to main content
  1. Home
  2. Phones
  3. Android
  4. Mobile
  5. News

Newly discovered Android malware Xavier clandestinely steals your data

Add as a preferred source on Google

A new variant of Android malware is making rounds in the Google Play store and it is bad news all around. According to Trend Micro, a Trojan dubbed Xavier, which is embedded in more than 800 applications on Android’s app store, clandestinely steals and leaks personal data.

Mobile malware is not new to the Android platform, but Xavier is a little more clever. It downloads codes from a remote server, executes them, and uses a string encryption, Internet data encryption, emulator detection, and a self-protect mechanism to cover its tracks.

Recommended Videos

It is derived from AdDown, a family of malware that has been around for two years. But unlike most offshoots, Xavier features the troubling addition of encryption and a secure connection. Once it loads a file and obtains an initial configuration from a remote server, it detects, encrypts, and transmits information about the victim’s device — including the manufacturer, language, country of origin, installed apps, email addresses, and more — to a remote server.

According to Trend Micro, Xavier makes its remote capabilities tough to pin down by detecting whether it is running on an Android emulator, a type of software that mimics a device’s hardware components. It checks the device’s name, manufacturer, device brand, operating system version, hardware ID, SIM card operator, resolution, and does not run if it encounters an unexpected field.

Trend Micro’s analysis identified Xavier in apps from southeastern nations such as Vietnam, the Philippines, Indonesia, Thailand, Taiwan, and others, many of which appear to be innocuous on the surface. They range from utilities like photo editors to wallpaper and ringtone changers, and are typically free.

Trend Micro’s report follows the discovery of two other forms of Android malware earlier this year. In May, researchers at Check Point identified Judy, an auto-clicking adware which could have infected as many as 36.5 million Android devices. In March, Palo Alto Networks uncovered malware designed for Windows PCs in 132 apps on Google’s Play Store.

Google’s taking a proactive approach to the problem. The search giant has targeted security on Android over the past year, most recently with the introduction of the Google Play Protect platform. It says it has worked with 351 wireless carriers to shorten the time it takes to test security patches before deploying them to users — an effort that resulted in a reduction of the software approval process from six to nine weeks to just a week.

Google’s also doled out $1 million to independent security researchers and pursued an aggressive strategy of encryption. As of December, 80 percent of Android 7.x (Nougat) users secure their data with passwords, patterns, or PIN codes.

Adrian Ludwig, director of Android security at Google, pointed to social engineering — attacks that fool a user into installing an app that compromises his or her device’s security — as one of the biggest challenges facing app developers today. “People don’t want to think about security,” he told members of the press at the RSA conference in February. “They just want it to be that way.”

Kyle Wiggers
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
Samsung Galaxy Z Flip 8: Everything we know about the upcoming clamshell folding phone
Of the three phones expected to arrive at Galaxy Unpacked, the Flip 8 is shaping up to be the most underwhelming.
Three Galaxy Z Flip 7 models next to each other

The Fold 8 Ultra could get a sharper display, a more powerful chipset, a new camera, and a larger battery. Samsung’s purported wider foldable, the Fold 8, is expected to solve the most common problem with tall-body, narrow cover screens by adopting a new aspect ratio. The Flip 8, on the other hand, could only debut with a new chip, and not a Snapdragon one. 

The Flip 7 wasn’t a bad clamshell by any measure. However, it's been one year, and the memory crisis has already hit the smartphone market hard. In a tricky cost-to-margin situation, the Flip 8 could end up getting a price hike without any major improvements, and that might not sit well with potential buyers.

Read more
Google Contacts borrows a handy iPhone trick to make sharing your number easier
google-contacts-app

Google is rolling out a small but useful update to the Contacts app on Android that makes it much easier to find and share your own contact details. Instead of digging through settings or creating a separate contact for yourself, you'll now see a dedicated 'Your Info' card at the very top of your contacts list.

The feature gives you quick access to your phone number, email addresses, and other personal details while also adding a faster way to share them with others. The update is arriving with Google Contacts version 4.83.13.940538822 and is rolling out widely (via 9to5Google).

Read more
Another Apple price hike just landed, this time on Apple One
Family and Premier Apple One subscribers will now pay $24 more each year.
Apple One

Apple has raised the monthly price of its Family and Premier Apple One bundles in the US. The Family plan now costs $27.95 per month, up from $25.95, while Premier has climbed from $37.95 to $39.95. Both plans are now $2 more expensive each month, adding another $24 to the annual bill. The Individual plan remains unchanged at $19.95 per month.

The increase arrives shortly after Apple raised subscription prices for Apple Music across its student, individual, and family plans. New AppleCare+ customers buying coverage for Macs and iPads have also been hit by higher prices recently.

Read more