Creepy malware found on Android and iOS that can steal your photos and passwords

The malware, dubbed Exodus, was discovered by Security Without Borders, who first found it in Android smartphone

A terrifying new strain of malware has been discovered in both Android and iOS apps, that can steal all your personal data.

The malware, dubbed Exodus, was discovered by Security Without Borders, who first found it in Android smartphones .

It was hidden inside files in several apps on the Google Play Store, which once installed on a smartphone, could infect the smartphones.

The infected app firstly collects basic details about the phone, such as the phone number and IMEI number.

This information is then sent to a control server, which launches multiple binary packages aimed at tracking the device.

Finally, a programme called DirtyCOW attempts root access, giving the malware the ability to collect any data on your phone.

Worryingly, this includes your passwords, chat logs, contacts and even photos.

Thankfully, Google patched DirtyCOW back in 2016, so any recently updated Android phones are immune.

Having found the malware on Android smartphones, Security Without Borders then discovered an iOS variant.

In this instance, the attackers hid the malware in Apple’s Developer Enterprise programme, which allows companies to install custom apps on employee devices.

So far it seems that only a small number of people have been affected by the virus.

To make sure you’re safe, be wary about any apps you download on your smartphone – any apps that look dodgy should be avoided.

To read the original article ;