The researchers from the cybersecurity firm of Lookout Inc. discovered new spyware that can steal data from iOS and Android users. They called it Goontact, which can steal personal information from the individuals who visit illegal sites. This spyware can gather device identifiers and phone numbers, photos, contacts, SMS messages, and location information. The researchers believe that the ultimate objective of stealing the data is extortion or blackmail.
They said that tablets and smartphones are a treasure trove of personal data because it stores private data. And having access to this entire data empowers cybercriminals like the operators of Goontact to run an effective blackmail crusade.
The extortion for this situation is also portrayed as sextortion that mainly targeting Chinese-, Japanese- and Korean-speaking people in multiple Asian countries. Proof on dissemination sites additionally indicates that this activity is functional in China, Japan, Korea, Thailand, and Vietnam.
The fraud begins when the target is baited to one of the hosted sites they’re invited to associate with ladies. They used secure messaging apps such as KakaoTalk or Telegram in initiating a conversation to show that it is safe. But in reality, they are communicating with Goontact operators who persuade them to install or side-load a mobile application. That said mobile application has no other function but to steal the victim’s data.
However, the researchers believe that those behind the Goontact are an online criminal group appearing to benefit from their victims.
In conclusion, mobile users are the most vulnerable to these kinds of scams. We are always tempted to apps that offer free and fun functionality without knowing its background if it is safe. In this digital era, we should apply the “Think before you click” whether in emails, websites, or applications. This will help us to protect our personal information and to avoid any kinds of attacks and scams.
Source: Lookout
