Skygofree Malware One of the Most Powerful Spyware Ever Seen: Kaspersky

Advertisement
By Sumit Chakraborty | Updated: 17 January 2018 11:19 IST
Highlights
  • Skygofree has undergone continuous development since 2014
  • The word 'Skygofree' was used in one of the domains
  • Kaspersky believes the attackers are Italian

Skygofree is newly identified malware that is reportedly one of the most advanced surveillance spyware ever seen. As per Moscow-based antivirus software maker Kaspersky Lab, this piece of Android and Windows malware comes with features "never before seen in the wild." This multistage malware is meant for surveillance, and reportedly enables attackers to carry out advanced snooping on Android, such as location-based audio recording, WhatsApp message theft, and connecting an infected device to Wi-Fi networks controlled by cybercriminals.

The new malware may be following the footsteps of the infamous hack in 2015 by Hacking Team, another Italy-based spyware developer. In a blog post on Securelist, Kaspersky has listed Skygofree's commands, indicators of compromise, domain addresses, as well as the device models targeted by the implant's exploit modules.

Advertisement

Researchers have named the new malware as Skygofree as the word was used in one of its domains. They say that the attackers have been active since 2014 and have been targeting select individuals, all from Italy. The malicious app spreads via webpages that look like those of network providers like Vodafone. From these pages, victims get tricked into installing the malicious APK. Skygofree also includes other advanced features, including a reverse shell that gives malware operators better remote control of infected devices.

"The implant carries multiple exploits for root access and is also capable of taking pictures and videos, seizing call records, SMS, geolocation, calendar events and business-related information stored in the device's memory," the firm adds. Skygofree has apparently been programmed to get added to the list of "protected apps", which means that it is not switched off when the display is off.

Advertisement

Kaspersky says Skygofree has undergone continuous development since the first version was created at the end of 2014 and there are as much as 48 different commands in the latest version. Kaspersky Lab researchers wrote, "As a result of the long-term development process, there are multiple, exceptional capabilities." It also found a number of recently developed modules especially targeting Microsoft Windows, providing the attackers with reverse shell, keyloggers, recording of Skype conversations.

Meanwhile, Kaspersky believes the attackers themselves are Italian. In the blog post, it says, "Given the many artifacts we discovered in the malware code, as well as infrastructure analysis, we are pretty confident that the developer of the Skygofree implants is an Italian IT company that works on surveillance solutions, just like HackingTeam."

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement
Popular Mobile Brands
  1. Dell's Pro Precision Workstation Lineup Debuts in India: See Price, Features
  2. Realme Narzo 100x 5G Confirmed to Launch in India on This Date
  3. BSNL Satellite Phone With Inmarsat Connectivity Launched in India
  4. Netflix for Free? Here's How to Check If You're Eligible for a Free Trial
  5. iPhone 18 Pro Max May Cost Apple Much More to Build Than Its Predecessor
  1. iPhone 18 Pro Max Component Cost Could Jump Nearly $300 Over iPhone 17 Pro Max: Report
  2. Netflix for Free? Some Users Are Getting a 30-Day Trial Subscription Offer: Here’s How to Check
  3. Samsung Galaxy Z Flip 8 Could Mark the End of Flip the Company's Foldables, Tipster Claims
  4. WhatsApp Might Be Working on a Birthday Notification Feature for Saved Contacts
  5. Samsung Galaxy Tab S12+ Listed on Safety Korea Certification Database With Live Images: Report
  6. BSNL Satellite Phone With Inmarsat Connectivity Launched in India: Price, Features
  7. Redmi Note 17 Pro Battery, Display Details Teased as Handset Surfaces on Taiwan's NCC Database
  8. Xiaomi 18 Pro Detailed Specifications Leaked, Might Feature Two 200-Megapixel Cameras, Snapdragon 8 Gen 6 Series Chip
  9. Samsung Galaxy Z Fold 8 Ultra Could Borrow Galaxy S26 Ultra Camera Features, Tipster Claims
  10. Xbox Game Pass Has Reportedly Lost 4 Million Subscribers Since 2024
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.