If we have already noted the security flaw in some mobile phones from manufacturers such as Samsung or Google itself, we are now faced with a series of applications that have been digitally signed by the third largest e-commerce in China and which have been “hacked”. to take control of millions of devices.
[Si tienes un móvil Samsung, haz esto ahora mismo para que no te hackeen]
Pinduoduo is the hacked app
Lookout is the security company that discovered that millions of devices around the world may have had personal data stolen and malicious apps installed.
The ace malicious versions of the Pinduoduo application They have been made available in third-party stores that many turn to to install apps outside of the Google Play Store framework.
And it is that the versions of this application in the Play Store or in the same Apple App Store do not contain any type of malicious code that could put user data at risk. So if you find this app installed from these stores then you are out of danger.
Via Ars Technica, TechCrunch announced last Monday that Pinduoduo had been removed from the Google store after a malicious version of the application was discovered in these third-party stores.
Of course, all versions outside of this scope of the Google Play Store used the exploit called “zero-days”. Two versions of Pinduoduo for Android hacked CVE-2023-20963the tracking number of the Android vulnerability to which Google has already applied a security patch available for two weeks.
The biggest problem is that this type of attack uses a very sophisticated tool and is based on application-based malware. Christoph Hebe isen is the one who warns that this is a major challenge for mobile users who must be protected.
Pinduoduo, who are they?
We are looking at an app from an e-commerce that recently reported that has 751.3 million monthly active users. Away from the competition in China, with Alibaba and JD.com as main rivals, PDD Holdings, the parent company, has become the fastest growing e-commerce company in China.
Right after Google removed the app from the Play Store, PDD Holdings came out to deny all about these attacks in the versions of the app in various third-party stores.
We have to go to a report given by Dark Navi, an investigative service, where it claims that the application used a series of “exploits” based on serialization and deserialization which, for the moment, its use these years is virtually unknown.
What the “exploit” does is allow the application to be installed in a hidden way, so that it is impossible to even uninstall it, which inflate the number of monthly active usersuninstall competing apps, steal private information and circumvent various privacy regulations.
Ahora bien, todavía el cuadro completo de la actividad de esta app en su versión maliciosa queda en el misterio y se sigue investigando para encontrar todas las acciones que realiza. Lo que queda claro es que todos aquellos que descargaron esta app a través de tiendas de terceros, que han podido ser cerca de millones de usuarios, se encuentran en peligro y si estás en este caso, lo mejor que puedes hacer es desinstalarla desde ya.
Te puede interesar
Sigue los temas que te interesan