Chinese officials use malware to extract and search personal data from smartphones

According to a recent security report, officials in China are using malware called Massistant to mine data from seized smartphones.

Security research firm Lookout stated that the Chinese police could seize any phone or computer without a warrant and gain access to personal data immediately. Massistant mines SMS messages, images, audio files, videos, and even GPS location data.

The malware is developed by Xiamen Meiya Pico, a Chinese tech company specializing in commercial surveillance software and equipment. The company controls 40% of the digital forensics market in China. 

Massistant is broadly used by the Chinese police

Chinese citizens have reported multiple times on local forums about finding malware on their phones after interacting with the police. One of the posts dates back to 2020, indicating that the malware has been widely used by the Chinese police in the past five years.

In the post, the user asked if the police had installed malware in his phone. Another user named topsky replied and said, “It is likely that your information was collected when you were given an administrative penalty for illegal behavior, including your mobile phone.”

The malware poses a major threat to travelers to and within mainland China. Tourists, businessmen, and employees from multinational companies could face an order to hand in their smartphones to the Chinese authorities. Sensitive data could leak easily since the police need no warrant to seize these devices.

Lookout stated that the malware works only on unlocked devices. The security firm shared a photo showing multiple smartphones connected to a hardware tower. The hardware is then connected to an external laptop or computer.

The security firm stated that Massistant is an Android application; however, the firm could not find an equivalent version for iOS users. The illustrations obtained from Xiamen Meiya Pico show multiple iPhones connected to the hardware tower, suggesting the existence of an iOS version. 

Massistant leaves a footprint on any phone or device, making it easy to delete permanently. However, once the malware is installed, it steals data, making the damage irreversible.

Lookout stated that Massistant is the successor to another tool named MSSocket, which was created by Xiamen Meiya Pico. Security researchers analyzed and exposed the threats of MSSocket in 2019.

In 2021, Xiamen Meiya Pico was sanctioned by the Office of Foreign Assets Control (OFAC). According to the designation, the Chinese company poses a significant threat to U.S. national security due to its role in developing and distributing surveillance technologies. OFAC alleges that Xiamen Meiya Pico facilitates human rights abuses and supports authoritarian surveillance efforts.

Your crypto news deserves attention - KEY Difference Wire puts you on 250+ top sites