Go Back   Android Forums > Android Discussion > Android Lounge
Android Lounge A place for general Android discussion and questions.

Like Tree1Likes
  • 1 Post By pequeajim

test: Reply
 
LinkBack Thread Tools
Old March 11th, 2013, 06:55 AM   #1 (permalink)
Member
Thread Author (OP)
 
Join Date: Dec 2009
Location: New Holland, PA
Gender: Male
Posts: 277
 
Device(s): Verizon RAZR Maxx Samsun Galaxy S4
Carrier: Verizon

Thanks: 139
Thanked 67 Times in 21 Posts
Default Potental threat, or not?

I received an email from a friend that contained a link to an .apk file labeled security-update.apk, (or something like that). I am usually very good at not clicking on links until I can verify what it is, but this person occasionally sends me links to movies of her kids, which I enjoy.

Also, factor in that the email notification which came at 4:30 in the morning which woke me up, so I wasn't thinking clearly.

As soon as I clicked on the link, I knew something was not right as it initiated a download of the file. I deleted the file after it downloaded, but am still worried.

Can these type of links download and automatically start the update without asking for your consent? I have side loading turned off.

I'm slightly worried...

Advertisements
pequeajim is offline  
Reply With Quote
sponsored links
Old March 11th, 2013, 07:51 AM   #2 (permalink)
AF Contributor
 
Join Date: Apr 2010
Location: New York
Posts: 1,523
 
Device(s): Samsung Galaxy S3, Nexus 7
Carrier: Cingular

Thanks: 234
Thanked 263 Times in 198 Posts
Default

Personally, I would never download an .apk unless I was absolutely sure of where it came from. I have side loaded apps before (mostly beta apps). I would also be very skeptically of downloading anything with "security" from an unknown source.

Considering that you never installed the .apk you should be fine. You would have received a prompt asking you if you wanted to install it and if you accept the permission of the app. I wouldn't be too concern, just be a bit more vigilant next time.
__________________
Past Devices: Google Nexus One (sold), Samsung Galaxy S2 (sold), B&N Nook (returned), Samsung Galaxy Tab 7 (sold), Samsung Galaxy Tab 10.1 (On the Shelf)
Current Devices: Samsung Galaxy S3 (AOKP), Nexus 7 (Stock), Chromecast

Mostly Harmless is offline  
Reply With Quote
Old March 11th, 2013, 07:59 AM   #3 (permalink)
Member
Thread Author (OP)
 
Join Date: Dec 2009
Location: New Holland, PA
Gender: Male
Posts: 277
 
Device(s): Verizon RAZR Maxx Samsun Galaxy S4
Carrier: Verizon

Thanks: 139
Thanked 67 Times in 21 Posts
Default Re: Potental threat, or not?

Yeah, this one caught me off guard in the early morning hours. I couldn't have been setup any better as she had just returned from a family outing with her kids. I emailed her to let her know what is happening. No, you're right. I should be good because nothing was loaded. As soon as I saw what was downloading, I did an "oh shit" and immediately woke up
pequeajim is offline  
Reply With Quote
Old March 11th, 2013, 08:05 AM   #4 (permalink)
The Real Bass Creator
 
Digital Controller's Avatar
 
Join Date: Sep 2012
Location: Cincinnati, Ohio
Gender: Male
Posts: 12,497
 
Device(s): Galaxy Note 3 4.4.2(Eclipse) , Nexus 7 (Stock), (RIP) Galaxy Nexus 4.4(SlimKat)
Carrier: Verizon

Thanks: 748
Thanked 3,423 Times in 2,163 Posts
Default

Downloading it should be fine as long as you didn't run it.

Might want to verify that this person actually sent this email, sometimes emails can be compromised and fake emails can be sent out to multiple recipients.
__________________
Want Faster help? Read this before posting!

I love this community and so should you! So before posting please read:
Site Rules & Guidelines and Android FAQ's
Digital Controller is offline  
Reply With Quote
The Following User Says Thank You to Digital Controller For This Useful Post:
pastafarian (March 11th, 2013)
Old March 11th, 2013, 08:10 AM   #5 (permalink)
Member
Thread Author (OP)
 
Join Date: Dec 2009
Location: New Holland, PA
Gender: Male
Posts: 277
 
Device(s): Verizon RAZR Maxx Samsun Galaxy S4
Carrier: Verizon

Thanks: 139
Thanked 67 Times in 21 Posts
Default Re: Potental threat, or not?

Thanks. Sent her an email about it as well as everyone copied on the list.
LilBit likes this.
pequeajim is offline  
Reply With Quote
The Following User Says Thank You to pequeajim For This Useful Post:
LilBit (March 11th, 2013)
Old March 12th, 2013, 03:49 PM   #6 (permalink)
 
Join Date: Mar 2013
Posts: 13
 
Device(s):
Carrier: Not Provided

Thanks: 0
Thanked 2 Times in 2 Posts
Default

Quote:
Originally Posted by Digital Controller View Post
Downloading it should be fine as long as you didn't run it.

Might want to verify that this person actually sent this email, sometimes emails can be compromised and fake emails can be sent out to multiple recipients.

Like DC suggests the lady's mailbox looks to have been hacked, sending malware to everyone in her contacts like it's coming from her, a seemingly trusted source. Imo she needs to change her password to her mail account asap.
Commeilfaut is offline  
Reply With Quote
Old March 15th, 2013, 04:33 AM   #7 (permalink)
New Member
 
Join Date: Mar 2013
Posts: 3
 
Device(s):
Carrier: Not Provided

Thanks: 0
Thanked 1 Time in 1 Post
Default

Quote:
Originally Posted by Commeilfaut View Post
Like DC suggests the lady's mailbox looks to have been hacked, sending malware to everyone in her contacts like it's coming from her, a seemingly trusted source. Imo she needs to change her password to her mail account asap.
That is correct. In addition, she should scan her computer with a good virus scanner like MalwareBytes. Is OP able to share a copy of the email that was sent (with full headers)? You can redact your personal information (name, email address, etc). I'm trying to obtain a copy of the malicious email, thanks!
punkoboy is offline  
Reply With Quote
Old March 16th, 2013, 12:35 AM   #8 (permalink)
 
Join Date: Mar 2013
Posts: 24
 
Device(s):
Carrier: Not Provided

Thanks: 0
Thanked 4 Times in 3 Posts
Default

Quote:
Originally Posted by punkoboy View Post
Is OP able to share a copy of the email that was sent (with full headers)? You can redact your personal information (name, email address, etc). I'm trying to obtain a copy of the malicious email, thanks!

Exactly the same thing happenend to my Yahoo!Mail account yesterday (and possibly hundreds of thousands of others). It sent an email with just a URL in the body to a part of my contacts list. No message/text except for my email ID as a kind of closing signature. I immediately changed my password, alerted those recipients and am still running a comprehensive scan of my systems and HDs.
11 (eleven!) hours later Yahoo caught on and temporarily blocked my account from sending "because of suspicious activity"... DUH!
Anyway, it was unblocked after an authentication with a captcha, so apparently it was a bot.

So sending you the header wouldn't tell you anything because it is my header.
And I could of course post the URL that comprised the body of the message. But since that URL probably leads to a boobytrapped website that doesn't seem very sensible.
FrankieJ is offline  
Reply With Quote
Reply


Go Back   Android Forums > Android Discussion > Android Lounge
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -5. The time now is 02:12 PM.
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.