Forwarded from John
No, I don't want to try because I can ask it to you guys. Besides that, I don't want to flash unnecessarily because that's bad for my flash storage.
Forwarded from Finix
Hello @XEonAX
I assume you are the lead developer of this project?
I am a security researcher working for a major infosec vendor. Recently I came across your project while trailing the origin and distribution network of an Android targeted malware by which one of our clients was affected and the attacker gained access to critical business documents.
I could not find any updated source code for your project, so I guess this is not open-source and work of only a few hobbyists?
Anyway, I have spent the last few hours reverse engineering and tinkering with the last few versions of ANXCamera. What I found is rather disturbing.
I found adware (at least in last few versions of) code in ANX which I believe led to malware delivery.
I have achieved everything I could find about your project and while I am still looking at it, I would appreciate if you could input some comments on the situation.
Thanks.
I assume you are the lead developer of this project?
I am a security researcher working for a major infosec vendor. Recently I came across your project while trailing the origin and distribution network of an Android targeted malware by which one of our clients was affected and the attacker gained access to critical business documents.
I could not find any updated source code for your project, so I guess this is not open-source and work of only a few hobbyists?
Anyway, I have spent the last few hours reverse engineering and tinkering with the last few versions of ANXCamera. What I found is rather disturbing.
I found adware (at least in last few versions of) code in ANX which I believe led to malware delivery.
I have achieved everything I could find about your project and while I am still looking at it, I would appreciate if you could input some comments on the situation.
Thanks.
Forwarded from Finix
I do have strong forensic evidence and as we speak we are working on analyzing the whole reverse engineered codebase and network requests. I asked for the developer's email because I feel like Telegram is not where these type of serious discussions should take place anyway.