If you use an app called eVestigator, billed as checking Android phones for compromise, delete it. That’s the word from someone signing their name as MaXe from InterN0T, who looked at what the Android app does. The app claimed to test Android phones to see if they’ve been compromised, but MaXe found it ran a connect() scan across every available TCP port – all 65,535 of them – and tell the user there are “87,375 threats” on their phone. The “report” button didn’t do anything much apart from sending the user’s external IP address back to the developer, “along with other details about the Android environment + user-entered details”, the advisory says.
Read Full Story
ORIGINAL SOURCE: The Register