Sneaky Android threats still rising
By Tom Brewster,
Android malware is still on the rise as hidden threats become an increasing concern, according to security giant Symantec.
There are some particularly nasty new threats emerging within apps – in particular a Trojan known as Android.Pjapps, which has been propagating through compromised versions of legitimate applications.
One application where the Android.Pjapps code has been seen hiding is known as Steamy Window.
“Similar to other compromised Android applications, it is difficult to differentiate the legitimate version from the malicious one once it is installed,” explained Mario Ballano, a Symantec researcher, in a blog post.
In the illegitimate version, permissions included access to both SMS messages and personal data, Ballano explained.
Both the legitimate and malicious versions of the app mimic a steam effect on the Android device’s screen, but the latter can install applications, navigate to websites, add bookmarks to the user’s browser, send SMS messages and block text message responses.
“The aim of Android.Pjapps is to build a botnet controlled by a number of different Command and Control (C&C) servers,” Ballano continued.
“The threat registers its own service to operate in the background without the user noticing. The service will be started whenever the signal strength of the infected mobile changes.”
Android.Pjapps then attempts to connect to a C&C server to register the infection.
“It then awaits for a response, and if commanded it will send a message with the infected device’s IMEI number to a mobile number,” the researcher explained.
“This mobile number is meant to be controlled by the attacker. By using this technique the attacker hides his identity within the ‘cloud.’”
Once an attacker has control, they can send commands to the phone. One appears to be able to force the user’s phone to send text messages to premium rate numbers, whilst another carries out SMS spamming.
“Looking at the threat’s capabilities we believe it has been designed to push advertisement campaigns and to reap the benefits from compromised devices using third-party, premium-rate services,” Ballano added.
Towards the end of last year, research found malware aimed at Google’s Android mobile operating system rose fourfold in 2010, compared to 2009.
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Android Analysis & Insight
Rolling out iPads in the enterprise
We caught up with IT manager Ian Davies to talk about the challenges of rolling out the Apple tablet to employees.
- Top 10 tech winners and losers of 2011
- 2011: The year in news
- BYOD: Old or new, good or bad?
- Q&A: All about BlackBerry Mobile Fusion
- Enterprise security shoot-out: iPad vs. Android
- Why it’s time to worry about mobile security
- Is Amazon a threat to Apple?
- Is Android stoppable?
- Has Google misfired by buying Motorola Mobility?
Latest Android Reviews
Samsung Galaxy S III hands on review
advertisement
Most popular
- UK regulator shuts down Angry Birds scam
- Apple iPad 3 vs iPad 2 head-to-head review
- IBM bans use of Siri on iPhones
- Chromebooks: What's gone wrong?
- HP plans massive job cuts
- EMC World 2012: Tucci declares Documentum is here to stay
- Dell EqualLogic PS6100XS review
- Macs and Android under malware threat
- RIM loses its head of sales
- Local fibre broadband needs common standards
Latest News Videos in Android
IT PRO Podcast: CES 2011
PlayIn the first podcast of 2011, we talk with Adam Griffin of Dell and Barry Collins of PCPro about tablets, the cloud and all the other exciting...
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
