Researcher analyzed the 6.49.0 application version launched on February 25 after it was found that the program used about 50 vulnerabilities of the Android operating system to surveillance in all aspects of malware to surveillance.And steal user personal information.
(Hong Kong News) A survey carried out by the US media shows that Chinese e -commerce application giants with about 824 million users are Pinduoduo. It has not permitted the user's mobile phone security settings for a long time and monitors the user's mobile phone security settings.To improve sales performance.
The United States CNN (CNN) conducted detailed investigations after receiving the report, including visiting six network security teams from Asia, Europe and the United States, as well as the current and former employees of Pinduoduo.
Researchers analyzed the 6.49.0 application version launched on February 25th and found that the program used about 50 vulnerabilities of the Android operating system to insert malware to monitor and steal the user's personal information.
Pinduoduo's internal employees revealed that in order to improve sales performance, the company established a vulnerability of a hundred people team to study the Android system in 2020 to monitor users' activities in other applications, view notifications, read private information, and track user positions, etc., and outline the location of user positions, etc., and outline the location of the user.Out of user habits, interests, and preferences.
At the beginning, Pinduoduo only monitored users in small counties and rural areas in China to avoid exposure.Pinduoduo also hides the potential malicious code in a legal folder to evade the censorship.
In order to further consolidate user stickiness, Pinduoduo has attacked Android vulnerabilities, and does not increase its application permissions without user authorization.uninstall.
Researcher: No evidence shows that Pinduoduo puts data on the Chinese government
The chief researcher at the Finnish network security company Withsecure, Hai Boning, said: "We have never seen this kind of mainstream application that will improve its own authority to obtain mainstream applications that are not authorized.It's quite unfavorable. "
However, researchers also said that there was no evidence that Pinduoduo had transferred data to the Chinese government.
6.49.0 After the launch of the end of February, China Cyber Security Company Dark Navy released a report, saying that Pinduoduo inserted malware in the application.On March 5th, Pinduoduo released the update version 6.50.0 quickly, and deleted the relevant vulnerabilities; two days later, the company suddenly disbanded the hundred people's engineering teams specializing in vulnerability.
Google announced on March 21 to remove this application in Google Store.A report published by Bloomberg said that a Russian cyber security company also found potential malware in the application.Pinduoduo had previously denied that "the guess and allegations of Pinduoduo's application of malware."
After the news is exposed, more people are expected to start paying attention to the international version of the international version of Pinduoduo.This application is among the best in the download list in the United States and has expanded rapidly in other Western markets.
Founded in 2015, Pinduoduo is the mainstream mobile shopping platform in China. Users can get a large discount through group buying products with others.The number of users of Pinduoduo has accounted for three -quarters of China's network population, and the market value is three times that of the auction platform EBAY.