To say same: Skygofree has nothing to do with sport channel Sky or app Sky go. If you land on a website that offers Skygofree, you should leave it quickly. Do not go over and close browser immediately. Orwise you can catch one of "most powerful Überwachungswerkzeugefür Android operating system" to date.

For example, security company Kaspersky InSkygofree report published on Tuesday summarizes. It has discovered DieSpionagesoftware, which has been circulating since 2014. Since n, it has been steadily evolving. 48 features have been discovered by security researchers in malware that exploits five gaps in Android system to obtain far-reaching permissions and somitSicherheitsmechanismen operating system.

Access to WhatsApp and WLAN

Once Skygofree has access to an Android Smartphoneerhalten, attackers can take pictures and videos via software, record calls, read SMS and access calendar entries as well as data immemory of device.

Some of features that Kaspersky's experts have never seen in this form of malware are: Skygofree Creatinga provides ability to automatically turn on microphone when smartphone is Sichan a specific location (what attackers Can herausfinden GPS signal).

In addition, device can even read messages from WhatsApp with a certain WLAN linking: this is possible in this case a service called Android Accessibility service, which is actually fürkörperlich restricted users. Skygofree uses it to read contents of each chat after opening WhatsApp. Derogation vulnerability in this service ofexperience been known since autumn.

In earliest discovered versions, Skygofree nochausschließlich had searched for WhatsApp databases on devices. However, in course of present time, software has become more and more complex and now even einigeKomponenten for Windows – possibly a hint that developers are planning ANDA version for or operating systems. Even now Skygofree can "intensively spy on targets without any suspicion," said Alexey Firsh of Kaspersky.

The malicious software apparently came into circulation via fake websites. At first glance, se remind official pages of mobile phone providers such as Vodafone and VersprechenAktualisierungen for smartphones. If you agree, install DieSchadsoftware. So it is relatively easy to protect yourself from this by not mansolchen calls in principle – official Android Updateswerden never in browser, but only offered in Control Panel.

Hints to Italian developers

Those who are exactly behind it are still unclear, but on fake websites – about one also had Skygofree in name, which is why Kaspersky christened Schadsoftwareso – security researchers got hints that lead to Italy. These websites were Italian and even most recent infections came mainly from re. The security researchers have an Italian company under suspicion, which is also state surveillance software, speaks Staatstrojanerentwickelt.

In past, re have always been Italian companies specializing in development of espionage software. One of m was Hacking Team, who also sold his products to autocratic regimes and was refore criticised. In year 2015, when Hacking Team was hacked and information about ir own and suspected customers was published, Skygofree most was also widespread. It is believed that after end of HackingTeam, or Italian companies have continued work.

The complexity of malware Skygofree and IhrFokus on cutting of chat services and conversations suggests that it is not a malicious software to Verbreitetwerden in a big way. Rar, it seems as if it was conceived for use against EinzelneVerdächtige, which would correspond to idea of a state Trojan.

Date Of Update: 18 January 2018, 12:03