{"id":123057,"date":"2018-01-24T10:50:41","date_gmt":"2018-01-24T08:50:41","guid":{"rendered":"https:\/\/mygaming.co.za\/news\/?p=123057"},"modified":"2018-01-24T13:45:02","modified_gmt":"2018-01-24T11:45:02","slug":"dark-caracal-do-you-want-the-good-or-bad-news-first","status":"publish","type":"post","link":"https:\/\/mygaming.co.za\/news\/mobile\/123057-dark-caracal-do-you-want-the-good-or-bad-news-first","title":{"rendered":"Dark Caracal \u2014 Do you want the good or bad news first?"},"content":{"rendered":"

By EFF Deeplinks Blog<\/em><\/p>\n

Yesterday, EFF and Lookout\u00a0announced<\/a>\u00a0a new report,\u00a0Dark Caracal<\/a>, that uncovers a new, global malware espionage campaign. One aspect of that campaign was the use of malicious, fake apps to impersonate legitimate popular apps like Signal and WhatsApp. Some readers had questions about what this means for them.<\/p>\n

This post is here to answer those questions and dive further into the Dark Caracal report.<\/p>\n

First, the good news:\u00a0Dark Caracal does not mean that Signal or WhatsApp themselves are compromised in any way.<\/p>\n

It only means that attackers found new, insidious ways to create and distribute fake Android versions of them. (iOS is not affected.) If you downloaded your apps from Google\u2019s official app store, Google Play, then you are almost certainly in the clear.<\/p>\n

The threat uncovered in the Dark Caracal report referred to \u201ctrojanized<\/a>\u201d apps, which are fake apps that pretend to look like real, trusted ones.<\/p>\n

These malicious spoofs often ask for excessive permissions and carry malware. Such spoofed versions of Signal and WhatsApp were involved in the Dark Caracal campaign.<\/p>\n

The malicious actors behind Dark Caracal got these fake, malicious apps onto people\u2019s phones by\u00a0spearphishing<\/a>. Several types of phishing emails directed people\u2014including military personnel, activists, journalists, and lawyers\u2014to go to a fake app store-like page, where fake Android apps waited.<\/p>\n

There is even evidence that, in some cases, Dark Caracal used physical access to people\u2019s phones to install the fake apps. Again, if you downloaded your apps from the official app store, you can rest easy that this has likely not affected you.<\/p>\n

And now the bad news: Dark Caracal has wide-reaching implications for how state-sponsored surveillance and malware works.<\/p>\n

Most people do not have to worry about this very specific threat. But for the small minority of users who may be directly targeted by nation-states or other skilled, motivated adversaries\u2014and for the malware researchers who try to track those adversaries down\u2014the Dark Caracal report uncovers a new infrastructure that makes it even harder to attribute attacks and malware campaigns to a particular nation or actor. More details are available in\u00a0the report<\/a>.<\/p>\n

Dark Caracal is also a reminder that most modern hacking requires the unwitting participation of the user. The most dangerous thing in the online environment is not necessarily complex, headline-grabbing vulnerabilities, but well-crafted phishing messages and fake apps that trick users into handing over log-in credentials and granting excessive permissions.<\/p>\n

Keep an eye out<\/a>\u00a0for links, attachments, and apps pretending to be something they\u2019re not, and make sure your\u00a0friends, neighbors, and others in your community<\/a>\u00a0are informed too.<\/p>\n

EFF<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Yesterday, EFF and Lookout\u00a0announced\u00a0a new report,\u00a0Dark Caracal, that uncovers a new, global malware espionage campaign.<\/p>\n","protected":false},"author":173,"featured_media":123058,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_sma_x_autopost_enabled":true,"_sma_x_custom_text":"","_sma_x_autopost_status":"idle","_sma_x_autopost_error":"","_sma_x_post_id":"","_sma_x_attempts":0,"footnotes":""},"categories":[2226],"tags":[25630,25629,25631],"class_list":["post-123057","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-mobile","tag-dark-caracal","tag-electronic-frontier-foundation-eff","tag-lookout"],"_links":{"self":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts\/123057","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/users\/173"}],"replies":[{"embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/comments?post=123057"}],"version-history":[{"count":0,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts\/123057\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/media\/123058"}],"wp:attachment":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/media?parent=123057"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/categories?post=123057"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/tags?post=123057"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}