as you love to explore your device, tweak it and try various keyboards app,
this particular keyboard called Flash keyboard already have more than 50 Million
installs but, it is a malware.
was found by a UK-based cyber-security firm, Pentest to be asking for
“excessive permissions”, displaying infected ads, asking for admin privileges
in order to make uninstall more difficult, tracking user behavior, and then
sending data to servers in China without the user’s permission. In other words
the Flash Keyboard app was spying on Android smartphone users and security
experts have already classified the app as “malware.”
is a keyboard app for Android that supports multiple languages and describes
itself as being “extremely adaptive to guarantee a fluent input in any
situation.” Pentest estimates that the app has been installed on more devices
than WhatsApp. With over 50 million
downloads, Flash Keyboard was ranked #11 in Google’s most popular Android apps
before the Pentest report.
phone’s Bluetooth connection, geo-location feature, or Wi-Fi status which a
normal keyboard app would not require. In addition, the app would ask for
access to kill background processes, read SMS messages, show system overlays,
or remove download notifications. Pentest says there are no reasons for a
keyboard app to require these intrusive permissions.
was asking for device admin permissions, and was using these powers to take
over the smartphone’s lock screen and show ads even if users opted out.
secretly transfers data to secret servers situated in China and other
foreign countries. The app transmitted
sensitive user data including the owner’s email address, device manufacturer,
model number, IMEI and Android version to what it believes to be analytics
servers in the US, Netherlands and China.
currently connected Wi-Fi network and others in the proximity, the identity of
the mobile network being used and GPS coordinates that are accurate to within
three meters of the user.
app becomes your boss!