Take the pledge to vote

For a better tommorow#AajSawaroApnaKal
  • I agree to receive emails from News18

  • I promise to vote in this year's elections no matter what the odds are.
  • Please check above checkbox.


Thank you for
taking the pledge

Vote responsibly as each vote counts
and makes a diffrence


Issued in public interest by HDFC Life. HDFC Life Insurance Company Limited (Formerly HDFC Standard Life Insurance Company Limited) (“HDFC Life”). CIN: L65110MH2000PLC128245, IRDAI Reg. No. 101 . The name/letters "HDFC" in the name/logo of the company belongs to Housing Development Finance Corporation Limited ("HDFC Limited") and is used by HDFC Life under an agreement entered into with HDFC Limited. ARN EU/04/19/13618
News18 » Tech
1-min read

'Music App' First Spyware Based on AhMyth: Researchers

The malicious app, called Radio Balouch aka RB Music even made to Google Play before being removed from the official Android app twice.

Trending Desk

Updated:August 26, 2019, 6:28 PM IST
'Music App' First Spyware Based on AhMyth: Researchers
Image for Representation (GitHub)

Researchers have discovered the first known spyware based on the AhMyth open-source malware. The malicious app, called Radio Balouch aka RB Music even made to Google Play before being removed from the official Android app twice. Without the knowledge of Balouchi or Balochi music enthusiasts, the radio-streaming app was stealing personal data of its users. AhMyth, the open-source Remote Access has been available since 2017.

“Since then, we have witnessed various malicious apps based on it; however, the Radio Balouch app is the very first of them to appear on the official Android app store,” team ESET explained in a blog. ESET said its mobile security solution “has been protecting users from AhMyth and its derivatives since January 2017 – even before AhMyth went public.”

“ As the malicious functionality in AhMyth is not hidden, protected or obfuscated, it is trivial to identify the Radio Balouch app – and other derivatives – as malicious, and classify them as belonging to the AhMyth family,” according to the blog.

The AhMyth malware, detected by ESET as Android/Spy.Agent.AOX has been available on app stores other than Google Play. It also has a dedicated website and has been promoted on Instagram and YouTube. Team ELS said it had reported the “malicious nature of the campaign to the respective service providers, but received no response.” The team said it discovered different versions of the malicious Radio Balouch app twice. “We reported the first appearance of this app on the official Android store to the Google security team on July 2nd, 2019, and it was removed within 24 hours. The malicious Radio Balouch app reappeared on Google Play on July 13th, 2019. This one, too, was immediately reported by ESET and swiftly removed by Google.”

Get the best of News18 delivered to your inbox - subscribe to News18 Daybreak. Follow News18.com on Twitter, Instagram, Facebook, TikTok and on YouTube, and stay in the know with what's happening in the world around you – in real time.

| Edited by: Chhavianshika Singh
Read full article
Next Story
Next Story

Also Watch


Live TV

Countdown To Elections Results
To Assembly Elections 2018 Results