A new Trojan has been found to be able to “phone home” and send specific types of data from smartphones using Google's Android operating system (OS), a report said.
According to a report by software security company Trend Micro, the “DroidDreamLight” malware attacks smartphones using the Android OS through infected applications that are installed by users. It is then activated when the user runs the infected file or when the unit receives a phone call.
The Trojan steals only several specific data, such as the device’s model number, language and country where the phone is being used, the unique International Mobile Equipment Identity (IMEI) number, and the International Mobile Subscriber Identity (IMSI) number.
It also steals infected unit’s software development kit (SDK) version, and the list of installed applications. These data are then uploaded to several Internet servers via HTTP POST.
TrendLabs Senior Threat Analyst Mark Anthony Balanza said information stolen by DroidDreamLight could be used by cybercriminals for social engineering campaigns that manipulate users into thinking that they are downloading and installing legitimate software. These applications could in fact be malicious software themselves.
DroidDreamLight is a follow up to the Trojan DroidDream, found last March, and also steals data from infected Android smartphones. DroidDream also downloads potentially malicious applications. It can also modify (commonly referred to by Android users as “rooting”) Android devices that allows cybercriminals to take control of the infected device without the legitimate owner's knowledge.
TrendLabs reported that DroidDream was able to infect at least 120,000 units while it was “in the wild.”
Balanza stressed that cybercriminals exploit users' need to have free applications for their devices. The attack is unknown until it is too late. “Since the Internet is full of free apps from developers, users should be more careful in downloading apps from stores, even if they come from the Android Market,” Balanza said.
Balanza said that to prevent such attacks from happening, users must always check what applications they are installing and if these come from trusted sources. He also said that users must always monitor the installation of applications, which would ask for permission to access certain actions in the unit, particularly automatic sending of data via phone's Internet functions.
“Malicious apps usually ask you for access to information on your smartphone. They can ask permission to send text messages, access the Internet, or even change your system settings. You have to be careful and check if the app really needs access to the info it's asking for,” Balanza said.
The Google's Android is one of the fastest growing operating systems in the world. Research firm Ovum said Android would lead the growth of smartphones in Asia Pacific for the next five years. By 2016 there would be 653 million smartphones would be sold worldwide, 30 percent of which will come from Asia Pacific region.
Ovum also showed that Android would have at least 38 percent share in the smartphone market, followed by Windows Phone at 22 percent, and Apple iOS with 19 percent. The dominance of the Android phone, according to Balanza, would make it a popular target for cybercriminals.
According to a report by software security company Trend Micro, the “DroidDreamLight” malware attacks smartphones using the Android OS through infected applications that are installed by users. It is then activated when the user runs the infected file or when the unit receives a phone call.
The Trojan steals only several specific data, such as the device’s model number, language and country where the phone is being used, the unique International Mobile Equipment Identity (IMEI) number, and the International Mobile Subscriber Identity (IMSI) number.
It also steals infected unit’s software development kit (SDK) version, and the list of installed applications. These data are then uploaded to several Internet servers via HTTP POST.
TrendLabs Senior Threat Analyst Mark Anthony Balanza said information stolen by DroidDreamLight could be used by cybercriminals for social engineering campaigns that manipulate users into thinking that they are downloading and installing legitimate software. These applications could in fact be malicious software themselves.
DroidDreamLight is a follow up to the Trojan DroidDream, found last March, and also steals data from infected Android smartphones. DroidDream also downloads potentially malicious applications. It can also modify (commonly referred to by Android users as “rooting”) Android devices that allows cybercriminals to take control of the infected device without the legitimate owner's knowledge.
TrendLabs reported that DroidDream was able to infect at least 120,000 units while it was “in the wild.”
Balanza stressed that cybercriminals exploit users' need to have free applications for their devices. The attack is unknown until it is too late. “Since the Internet is full of free apps from developers, users should be more careful in downloading apps from stores, even if they come from the Android Market,” Balanza said.
Balanza said that to prevent such attacks from happening, users must always check what applications they are installing and if these come from trusted sources. He also said that users must always monitor the installation of applications, which would ask for permission to access certain actions in the unit, particularly automatic sending of data via phone's Internet functions.
“Malicious apps usually ask you for access to information on your smartphone. They can ask permission to send text messages, access the Internet, or even change your system settings. You have to be careful and check if the app really needs access to the info it's asking for,” Balanza said.
The Google's Android is one of the fastest growing operating systems in the world. Research firm Ovum said Android would lead the growth of smartphones in Asia Pacific for the next five years. By 2016 there would be 653 million smartphones would be sold worldwide, 30 percent of which will come from Asia Pacific region.
Ovum also showed that Android would have at least 38 percent share in the smartphone market, followed by Windows Phone at 22 percent, and Apple iOS with 19 percent. The dominance of the Android phone, according to Balanza, would make it a popular target for cybercriminals.
SOURCE: http://adf.ly/1iWzl
_2_new.jpg)
.+Dakota+Fanning.jpg)
No comments:
Post a Comment