alert ! android users ,malicious season …


 The 2014 Fifa World Cup in Brazil has begun, and Trend Micro researchers have pointed out yet another thing that fans need to be careful about — fake and malicious versions of World Cup-themed apps.
Trend Micro has already found more than 375 questionable or outright malicious World Cup-themed apps and has stated that more are sure to be offered while the sporting madness continues.
“The vast majority of these apps lurks from third party app stores, so users are advised to avoid them altogether or to be extra careful when reviewing apps they want to install from them,” said Dhanya Thakkar, managing director, India & SEA, Trend Micro. “Installing a mobile security solution is also a good idea,” he said.
“Mobile users should be aware that cybercrooks have taken to cloning popular apps and adding to them malicious routines that subscribe users to premium services, leak user-critical information, and install malicious links and shortcuts on the mobile device home screen,” Trend Micro said.
One of the malware families detected is ANDROIDOS_OPFAKE.CTD family. “This particular family first appeared in May 2013, passing itself off as fake clones of popular apps,” Trend Micro stated.
“Its malicious routines included subscribing the user to premium services, leaking user-critical information (such as contact list/messages) as well as install malicious links and shortcuts on the mobile device home screen,” it said. In just one year, the number of detected ANDROIDOS_OPFAKE.CTD variants reached 100,000, faking 14,707 apps.
“We also discovered that the remote server the apps connect to has 66 different domains, with each domain spoofing famous websites like  MtGox.com,” Trend Micro said.
“Another malware family we detected leveraging World Cup fever is the ANDROIDOS_SMSSTEALER.HBT family,” it said.
Variants of this family share similar methods of fraud and fakery with OPFAKE, with one exception — they can connect to their remote C&C server to receive and execute commands, some of which being adding an SMS filter (to block/conceal certain incoming messages), sending SMS, and installing new malware.
“Finally, we found a malicious World Cup slot game app that we detect as ANDROIDOS_MASNU.HNT,” Trend Micro said.
“Its malicious routines include filtering user payment confirmation messages, so that users may not notice the real amount of money they’ve been paying when playing this game, and thus spend more without restraint,” it said.
Advertisements

Leave your smart views

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s