You’ve probably used the app “Absence Management System” (AMS) to remove malware from devices.
But the company behind it has now made the app look like a virus scanner, according to a new study.
The “Absense” app was developed by the company CloudBees and is supposed to scan a device’s hard drive and detect any files that might contain malware.
But a team of researchers discovered that it only worked on Windows phones.
Now, researchers have used a modified version of the app to identify files on the infected device and remove them.
“The Absense” malware scanner uses “Cipher” as its payload.
It’s unclear if the “Ciphers” used in this scan are known, or if CloudBee’s modified version is better.
In an update on its blog, CloudBeez said the “Absences” app is only vulnerable to “the ‘Cipher’ cipher suites used by Windows Defender, and not the ‘Cipher Suite 3.1’.” The researchers also wrote that the “absences” program was vulnerable to two different types of exploits.
The first is a “remote code execution exploit” that could be used to launch malware on infected devices.
The second is a denial-of-service (DoS) attack.
Both of these attacks require the victim to be connected to the internet to execute.
The researchers said CloudBEE’s scanner does not scan the user’s computer’s memory.
“Our scanner only searches memory of infected devices and doesn’t look at the device itself,” the researchers wrote.
“CloudBees scan does not include memory dump of files or other information, such as passwords or other data that might be used by malicious actors to execute malware.”
The researchers found that the app used “Cumulative Analysis” to check for files that contained the malware.
The program uses the malware “Cummulative Analysis Toolkit (CATK)” to do its job.
The app also uses the “MalwareScanner” to identify malicious files and to check if they are present.
The study was published in Virus Bulletin on February 9.
A company spokesperson said in a statement that CloudBeeds “had not been notified of the findings” and was unable to comment.
A spokesperson for CloudBeeks said the company was unaware of the research.
“We are not aware of any malicious activity that has been found in this sample,” the spokesperson said.
CloudBoxes spokesperson also confirmed the company is not aware the researchers have made a claim of malicious activity.
CloudBs new “absence” app has been modified to remove the virus scanner.