Skip to main content
  1. Home
  2. Mobile
  3. News

Your Android might be controlled by a malicious Twitter account

By

Twitter
Image used with permission by copyright holder
Twitter has quite the storied history of being used for both good and evil, what with its ability to connect millions of people and allow them to communicate faster than ever before. But now, it’s being used to form some particularly malevolent connections.

According to a recent blog post from ESET, there’s a new kind of mobile malware that makes use of Twitter to control an Android device-based botnet. It’s the first known mobile malware to use this kind of social media account instead of a command-and-control server to exercise its power over infected devices.

Recommended Videos

It’s called Twitoor, and this Trojan apparently lies dormant on Android devices, and awaits commands from a malicious Twitter account. Commands can either tell Twitoor to download and install other applications — generally of the data-stealing mobile banking malware variety — or switch to another command-and-control Twitter account.

Related

“Using Twitter instead of command-and-control servers is pretty innovative for an Android botnet,” said Lukas Stefanko, the ESET malware researcher who first found the app. Apparently, it’s been around for about a month, and while it can’t be downloaded from the Google Play store, experts think that devices are infected either with text messages or malicious URLs.

The use of social media networks in the botnet’s communication is rather creative, Stefanko admits, noting, “These communication channels are hard to discover and even harder to block entirely.” He added, “In the future, we can expect that the bad guys will try to make use of Facebook statuses or deploy LinkedIn and other social networks.”

So proceed with great caution, friends. Your Android could indeed be controlled by a rogue Twitter account. “Twitoor serves as another example of how cybercriminals keep on innovating their business,” Stefanko concluded. “The takeaway? Internet users should keep on securing their activities with good security solutions for both computers and mobile devices.”

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
You might be waiting a while longer for Samsung’s Android 15 beta
The Samsung Galaxy S24 Ultra in Titanium Orange and in Titanium Silver.

Today is all about dealing with software delays. First, there's news that Apple users might have to wait a bit longer for Apple Intelligence to arrive with iOS 18 this fall. There's also news that Samsung's Android 15 beta may be later to release than we initially thought.

According to SamMobile, Samsung originally planned to release One UI 7 today. However, the release has been slightly delayed due to the public release of One UI 6.1.1 for the Galaxy S24 series.

Read more
Android 15 will give your phone an important new security feature
Android 15 logo on a Google Pixel 8.

Google is introducing a security feature in Android 15 to guard against "juice jacking" attacks, as reported by Android Authority, The new feature is currently being tested in the Android 15 beta.

Wondering what a "juice jacking" attack is? It describes an event where a hacker secretly sends data payloads to your device, should it have the ability to both charge and transfer data over the same USB connection. This includes most modern smartphones, and examples of hardware used for juice jacking include mobile charging stations. Should the attack be successful, hackers could compromise the device, wreak havoc, and endanger your privacy.

Read more
Google is making it easier to ditch your iPhone for an Android phone
Samsung Galaxy S24 Ultra and iPhone 15 Pro in hand.

Switching phones is never a smooth process, even if you’re switching between two different Android phones. However, when you’re trying to switch from an iPhone to Android or vice versa, it can be extra complicated -- and you can lose data and apps that you rely on. This is especially the case with Apple-to-Android transfers because the iPhone has a much stronger ecosystem lock-in with things like iMessage, iCloud backups, and exclusive apps like Overcast and Hyperlapse.

The good news is that with its Data Transfer Tool (also called Pixel Migrate on Pixel devices), Google may be trying to mitigate some of the phone-switching problems that arise -- specifically, losing access to your Live Photos. According to an APK teardown from Android Authority, Google’s Data Transfer Tool will finally resolve the problem of migrating iOS Live Photos to Android. It will do this by converting them over as Motion Photos.

Read more