Universe Browser exposed as malware with all users data being harvested via Chinese data centres
We all know privacy and security are under attack from the UK government with their mass state monitoring agenda, but this primarily China based browser is a timely reminder how alert we need to be.
When users see a new shiny browser offering security, speed and based on Chrome this automatically gives users a false sense of security when browsing online.
Browsers like Brave, DuckDuckGo, and Tor can help your privacy. But not all so-called privacy browsers are safe. Security researchers have flagged a dangerous exception with millions of downloads: the Universe Browser.
Advertised primarily in China as a secure way to bypass censorship and access online gambling sites, the Chrome-derived Universe Browser promises anonymity. In reality it delivers the opposite.
According to a report from Infoblox and the UN Office on Drugs and Crime, this application functions less like a browser and more like a Remote Access Trojan (RAT). Once installed, it performs a frightening array of surveillance:
Records user location and keystrokes.
Routes all traffic data through servers in China.
Installs keyloggers and changes network settings.
Takes screenshots of your browsing activity.
On Windows, it can even replace your genuine Chrome executable file.
The browser is promoted to customers of the Baoying Group, which researchers link to the notorious Triad criminal network, dubbed Vault Viper. This group profits from illegal online gambling, cybercrime, and money laundering.
The data collected — including monitoring your clipboard and system info — is perfectly leveraged for tracking potentially wealthy gamblers, making them targets for identity theft, blackmail, or further malware attacks. The browser even attempts to evade antivirus detection and sends encrypted data to servers associated with Vault Viper.
The Universe Browser appears to be custom-made for this criminal operation, primarily targeting users in China and Taiwan. While mobile versions (iOS App Store and Android side load) exist, the Windows version is considered the most dangerous of all.
The takeaway is simple: If you see a tool promising privacy and a way around web blocks, stick to reputable sources like Brave, Tor, or DuckDuckGo. Avoid the Universe Browser entirely.