Android ‘forensic’ app pulled from Google Play after vulnerability report • The Register

If you use an app called eVestigator, billed as checking Android phones for compromise, delete it.That’s the word from someone signing their name as MaXe from InterN0T, who looked at what the Android app does.The app claimed to test Android phones to see if they’ve been compromised, but MaXe found it ran a connect() scan across every available TCP port – all 65,535 of them – and tell the user there are “87,375 threats” on their phone.The “report” button didn’t do anything much apart from sending the user’s external IP address back to the developer, “along with other details about the Android environment + user-entered details”, the advisory says.

Source: Android ‘forensic’ app pulled from Google Play after vulnerability report • The Register

Leave a Reply

Your email address will not be published. Required fields are marked *

20 + 13 =