Skip to Content

More Pushwoosh findings

Updated on 2022-12-13: More Pushwoosh findings

Pushwoosh, the Russian software company whose code was recently removed from many US government apps earlier this year, claimed after a Reuters exposé that it stopped using code from its Russian developers after Russia’s invasion of Ukraine. However, Margin Research, a DARPA contractor, said that after analyzing the company’s GitHub history, they found this claim to be false, as many code contributions were made in the Russian GMT+7 timezone. Read more:

Updated on 2022-11-29: Pushwoosh linked to malware operation

Investigative infosec reporter Brian Krebs and security researcher Zach Edwards have found links between mobile software company Pushwoosh and the Pincer malware operation from the early 2010s. Pushwoosh rose to infamy this month after a Reuters report found that the company’s code was recently removed from several US government mobile applications after US officials discovered that the company pretended to be based in the US but was actually based in Russia. Krebs says that one of Pushwoosh’s employees is a man he identified in 2013 as the author of Pincer, an Android trojan that was capable of intercepting and forwarding text messages from Android mobile devices. Read more:

Updated on 2022-11-21: Russian software disguised as American finds its way into U.S. government apps

A U.S. Army mobile app used by soldiers and a mobile app used by the CDC contained code from a software company with links to Russia, which collects users data, like geolocations, and could allow tracking at scale. Pushwoosh, which doesn’t say much to quell the claims, appears to be a U.S. company but is in fact Russian, Reuters found, sparking security concerns. The government removed the code from their apps, but it once again highlights how data siphoned from apps on your phone can be easily handed to potentially bad actors. Read more: EXCLUSIVE Russian software disguised as American finds its way into U.S. Army, CDC apps

Updated on 2022-11-15: Russian company posing as American

A Reuters report has uncovered that the Pentagon was using applications that contained code from a software firm named Pushwoosh that claimed to be US-based but was actually a Russian company. The company’s code was also found in thousands of mobile apps across Apple and Google’s online app stores. Read more: EXCLUSIVE Russian software disguised as American finds its way into U.S. Army, CDC apps

Overview: Russian Code Found its way into Army, CDC APPs

The CDC and the Army leveraged code from Pushwoosh for their own apps as they believed Pushwoosh was a U.S. company. Pushwoosh’s social media profile states they are indeed a U.S. company, but Reuters discovered they are actually a Russian company headquartered in Siberia. Upon discover of the origin of the Pushwoosh code, the Army removed the app, and the CDC removed the software from their public facing applications due to security concerns.

Note

  • Supply chain security requires understanding not only the security of code used, but also its origins. Note that Pushwoosh represents itself as being a U.S. company in regulatory findings, claiming, at times, it is based in California, Maryland, and Washington D.C. When considering the risk, incorporate not only the origin but their TTPs to evaluate how they may impact you.

Read more in

Alex Lim is a certified IT Technical Support Architect with over 15 years of experience in designing, implementing, and troubleshooting complex IT systems and networks. He has worked for leading IT companies, such as Microsoft, IBM, and Cisco, providing technical support and solutions to clients across various industries and sectors. Alex has a bachelor’s degree in computer science from the National University of Singapore and a master’s degree in information security from the Massachusetts Institute of Technology. He is also the author of several best-selling books on IT technical support, such as The IT Technical Support Handbook and Troubleshooting IT Systems and Networks. Alex lives in Bandar, Johore, Malaysia with his wife and two chilrdren. You can reach him at [email protected] or follow him on Website | Twitter | Facebook

    Ads Blocker Image Powered by Code Help Pro

    Your Support Matters...

    We run an independent site that is committed to delivering valuable content, but it comes with its challenges. Many of our readers use ad blockers, causing our advertising revenue to decline. Unlike some websites, we have not implemented paywalls to restrict access. Your support can make a significant difference. If you find this website useful and choose to support us, it would greatly secure our future. We appreciate your help. If you are currently using an ad blocker, please consider disabling it for our site. Thank you for your understanding and support.