Facebook Shuts Down Hackers Who Infected iOS and Android Devices

Share post:

Facebook has disrupted a hacking operation that utilized its social media platform, to spread iOS and Android malware that spied on Uyghur people from Xinjiang, China.

The hackers, which researchers have traced to have links to the Chinese government, planted malware on websites often visited by activists, journalists, and dissidents from Xinjiang who are now based overseas.

The hackers installed websites with malicious JavaScript that infected target iPhones with malware which now carries the name Insomnia. The hacking group, referred to as Earth Empusa, Evil Eye, or PoisonCarp, worked against iPhones running iOS versions 10.x, 11.x, 12.0, and 12.1 while some worked against versions 12.3, 12.3.1, and 12.3.2.

Taken together, these exploits were able to infect devices for more than two years and continues to this day even after having been exposed.

Insomnia is capable of exfiltrating data from a host of iOS apps, contacts, GPS, iMessage and third-party apps like Signal, Telegram, Whatsapp, Gmail, and Hangouts. The exploits were delivered only to people who passed certain checks involving IP addresses, OSesd, browsers, as well as country and language settings, thus evading easy detection.

Moreover, Evil Eye used fake apps to infect Android Phones, often mimicking third-party Android app stores that published Uyghur-themed software. Once installed, the trojanized apps infected other devices with one or two strains of malware called ActionSpy and PluginPhantom.

Facebook has named two China-based companies that had allegedly manufactured the malware. The Chinese government has denied any involvement in these practices that targeted Uyghur dissidents and their connections.

For more information, you may view the original story from Arstechnica.

Featured Tech Jobs


Related articles

Walmart drops ads from X/Twitter

On December 1st, Walmart announced it is no longer advertising on social media platform X, previously known as...

Compel social media apps to toughen their privacy, trust practices, Parliament told

Committee hearing told social media apps can be exploited for propaganda and radi

YouTube will required disclosure of AI Content

YouTube is set to implement new policy changes next year, requiring creators to disclose the use of generative...

X/Twitter is the most signficant source of disinformation – European Union

The European Union has issued a warning about the pervasive spread of fake news and disinformation across social...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways