Earlier this month, research firm Lookout Android-smartphone has identified a new family of Trojans – Shedun, Shuanet and ShiftyBug, which are almost impossible to remove. Viruses bypass security mechanisms Android, get administrator rights and penetrate deep into the system and precipitated by annoying commercials.
Moreover, malware moves the infected attachment to the system partition, which allows it to “survive” even if the discharge apparatus to the factory settings. The Lookout has carefully examined the Trojans and found that kind of Shedun was the most cunning and dangerous.
“Shedun, belonging to the family of adware Trojan software is much more sophisticated than many people think. In addition to gaining root-access, Shedun exploits Android Accessibility Service (AAC, “Accessibility Android”) for malicious purposes, found Lookout “, – wrote a blog a company spokesman Michael Bentley, noting that such cases are extremely rare.
Shedun scans installed on Android- Smartphone application for authorization in AAC. Further, using the service functions for users with disabilities, the Trojan reads the text on the screen, scrolls the list of permissions and click on the “Install” button, and no physical user interaction is not required.
Shedun, and Shuanet ShiftyBug and also penetrate to Android-powered devices under the guise of an official application (Facebook, Snapchat, WhatsApp, Twitter, etc.), downloaded from third-party stores. Samples of the virus in the official Google Play store was found – Shuanet infects only smart phones, which allowed the installation program from alternative sources.
Source: Ars Technica