2 min read

Hackers plotted fake Flappy Bird app to steal girls' photos from Android phones

Graham CLULEY

September 06, 2014

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Hackers plotted fake Flappy Bird app to steal girls' photos from Android phones

Next time you install an app on your phone, you’d best think twice if it asks permission to access your photos.

As The Guardian reports, following a tweet from security researcher Nik Cubrilovic, the very same hackers who merrily collected naked photos of more than 100 female celebrities, including Oscar-winning actress Jennifer Lawrence, had plotted a variety of dirty tricks to increase their haul.

At least one hacker openly posted on the AnonIB image board, proposing what he called a “genious” idea:

I have developed a flappybird clone. Hear me out. I.. modded.. the app.

It now secretly downloads all of the phones pictures to my server when the game is running.

Such a scheme, if put into operation, would not just be a risk for celebrities of course. Anybody who had photographs on their smartphone which they wanted to remain private would be at risk if they installed the app.

The only good news is that the hacker posting on AnonIB’s sleazy image-sharing board doesn’t want to risk his developer account.

The problem is this – it’s a violation of google play developers license to do publish sneaky apps like that, and I REFUSE to risk my license over it.

HOWEVER, I am willing to make a second developer account with the purpose of getting wins from this game. The fee is 20$ for a developer license.

If any kind anons want to help me get the thing paid for, I will post any wins obtained in this thread. (I will link the app’s store entry here. you get the girls to download it and play ONCE, and you’ll get all the win you wanted, if it was there.

What a charming fellow… I’m sure his mother is proud of him.

The real Flappy Bird game, written by Dong Nguyen, has been one of the most popular apps of the year – its addictive tough gameplay and retro graphics either managing to both frustrate and charm in equal measure. Scores of copycat rip-offs of the game exist in the Android Google Play store, and although it’s not known if the hacker’s plan was ever put into action – it’s certainly plausible that it would work.

The problem is, of course, that firstly Google doesn’t police its app store anything like as strongly as Apple, but also that users are all too willing to grant permission to their Android apps to access all manner of parts of their smartphone without questioning if it’s appropriate for a game to – say – send SMS message or (in this scenario) access your photographs.

Don’t forget, always be careful about what apps you put on your mobile phone, and take special care over the permissions that they request. If you don’t want to grant an app access, don’t install it.

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Common Credentials Criminals Use in IoT Dictionary Attacks Revealed Common Credentials Criminals Use in IoT Dictionary Attacks Revealed
Silviu STAHIE

November 30, 2021

3 min read
Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown
Filip TRUȚĂ

November 29, 2021

2 min read
Social media firms will be forced to unmask online trolls, says Australia Social media firms will be forced to unmask online trolls, says Australia
Graham CLULEY

November 29, 2021

2 min read