Android Apps Can Take Pictures and Send Them Without You Knowing – How To Keep Safe?

This discovery in turn is raising many concerns regarding our privacy (and safety) in the mobile age. Albeit, to their right, it would be fair to mention that software companies aren’t exactly sitting with their legs crossed doing nothing about it.

The Discovery

When Szymon was working on his university team project, he probably didn’t even imagined the type of shocking discovery he might find. As it turns out, after a few experiments he conducted, Szymon was able to create an app which could secretly take pictures via the smartphone camera and send it over to a private server he chose for the purpose. The way he did it was by instilling a background service, which doesn’t need to have an associated visible activity, hence it can be run without the user knowing about it. Another obstacle Szymon had to cross was that the camera has to have a preview displayed on the screen in order to take a shot. Remembering on Facebook’s Messenger app that is able to draw to the UI even while the app isn’t technically running, Szymon built upon that idea and refined it to draw a preview of merely 1×1 pixel in size. In his words:

“The result was amazing and scary at the same time – the pixel is virtually impossible to spot on Nexus 5 screen (even when you know where to look)! Also it turned out that even if you turn the screen completely off, you can still take photos, as long as the pixel is still there.”

Here’s a short video demonstration he made:

How to Keep Safe from Malicious Apps

A few tips, some also recommended by Szymon, in order to keep safe are: