The company Lookout has found a new type of malicious software disguised as popular applications, such as, Facebook, WhatsApp and Twitter. Experts report that they were able to calculate on Google Play and other stores about 20 000 applications, relating to families Shuanet, ShiftyBug and Shedun, which are called “Trojan adware malware” – it all starts with the banal display advertising.
Some of these programs are partially function as expected by a victim that even more misleading about their true purpose – program get administrator privileges (Root) on the smartphone and installed in such a way that regular instruments Android does not allow you to remove the software. The malware after receiving Root appoints himself system application to him get rid of, you need to have deep knowledge of the operating system and the structure of directories in your smartphone. It does not help even a dump of the data.
For the user poisoning … could mean trip to the store for a new phone.
Experts do not undertake to assert that all malware related to three discovered families, were created by the same people, but a similar principle of operation indicates that the attackers acted, at least together. The greatest number of attacks occurred in the United States, Germany, Iran, Russian and India. This is only the first cases of this type of malware in the future masquerade system applications will be more programs are confident Lookout. In addition, the actual attack can be part of something larger, for example, mass extortion of funds.
Let’s remind, the issue of security on Android raised more than once, however, after the discovery of the first Stagefright manufacturers of smart phones began to speak more concretely – they made statements on the issue of the monthly security updates for their devices. First, it has promised to do Google, as well tightened after Samsung and LG. By the way, the latter company is the most responsible in ensuring the safety of their devices.