Go Back   Android Forums > Android Forums Community > The Lounge
The Lounge We're all friends here. Hang out, kick your feet up and talk about whatever the heck you want!

Like Tree2Likes
  • 1 Post By 9to5cynic
  • 1 Post By Kamau

test: Reply
 
LinkBack Thread Tools
Old October 2nd, 2012, 01:47 PM   #1 (permalink)
Senior Member
Thread Author (OP)
 
Kamau's Avatar
 
Join Date: Dec 2010
Location: S.W. Lower Michigan
Gender: Male
Posts: 1,032
 
Device(s): Motorola Xoom, Galaxy S3, Galaxy Note 3
Carrier: Virgin Mobile, T-Mobile

Thanks: 155
Thanked 118 Times in 92 Posts
Default New Malware

Spookiest Smartphone Malware Yet? - Atlantic Mobile

Even though the article says it's not in the wild yet, I wonder how long it will be before someone replicates it and does put it out there.
It also makes me wonder what else is out there that we don't know about.

Advertisements
Kamau is offline  
Reply With Quote
The Following User Says Thank You to Kamau For This Useful Post:
9to5cynic (October 2nd, 2012)
sponsored links
Old October 2nd, 2012, 10:17 PM   #2 (permalink)
Senior Member
 
9to5cynic's Avatar
 
Join Date: Feb 2011
Location: /home/
Posts: 4,858
 
Device(s): Galaxy S3 (Verizon) Evo 4G - retired/rooted
Carrier: Verizon

Thanks: 3,066
Thanked 1,763 Times in 1,189 Posts
Send a message via AIM to 9to5cynic
Default

There's a lot of spooky android malware out there.

Android has a feature that allows one app to pull focus from another. So, if I make, say, a popular game application and include this focus call... it can jump into the foreground.

So say you play my awesome game, and decide that you need to check facebook or do some Amazon shopping. Well, luckily, my app calls itself to the foreground with a ripped off log in screen for those apps... now I've got your credentials.

I was at a talk the other day, and one of the researchers mentioned this. He said that when the warned google about this risk, google was like, 'oh, that's a feature, we can remove that.' </facepalm>

Sure there are legit apps that could use this, but so could malicious apps.

They also mentioned that there is an app that you can buy that is basically a rootkit of the device with botnet capabilities. So it can record your conversations and then be used for a ddos. OUCH!

All the more reason to be vigilant of what we install I'd say.

--

I really liked the author's disclaimer at the bottom. (My podcast app quit downloading over wifi. )
And it was developed by a guy who works for the navy with surface warfare, yep. I'm thinking this has some cool cyberwarfare implications.
Kamau likes this.
9to5cynic is offline  
Last edited by 9to5cynic; October 2nd, 2012 at 10:22 PM.
Reply With Quote
The Following 2 Users Say Thank You to 9to5cynic For This Useful Post:
dylo22 (October 3rd, 2012), iowabowtech (October 2nd, 2012)
Old October 3rd, 2012, 12:57 AM   #3 (permalink)
Junior Member
 
Join Date: Sep 2012
Location: Chicago
Posts: 83
 
Device(s): SIII, SII, SI
Carrier: "Sprint"

Thanks: 4
Thanked 12 Times in 11 Posts
Default

Install smart. It is not rocket science? I hear and see people stress over crap. If you got a virus on your Windows you might get one with Android.

No one can protect you from yourself better than you.
SIII groupie is offline  
Reply With Quote
Old October 3rd, 2012, 09:26 AM   #4 (permalink)
Senior Member
Thread Author (OP)
 
Kamau's Avatar
 
Join Date: Dec 2010
Location: S.W. Lower Michigan
Gender: Male
Posts: 1,032
 
Device(s): Motorola Xoom, Galaxy S3, Galaxy Note 3
Carrier: Virgin Mobile, T-Mobile

Thanks: 155
Thanked 118 Times in 92 Posts
Default

Stressed, no. Concerned, most definitely with every right to be.
Viruses & malware have grown from just an annoyance to big problems over the years for systems & phones/tablets. And they have gotten more sophisticated every time one turns around.
So paranoia is not called for now, but vigilance certainly is, both proactive & reactive.
Kamau is offline  
Reply With Quote
Old October 3rd, 2012, 10:19 AM   #5 (permalink)
Senior Member
 
Trooper's Avatar
 
Join Date: Apr 2010
Posts: 3,711
 
Device(s): Moto X
Carrier: Verizon

Thanks: 1,742
Thanked 675 Times in 462 Posts
Default

All this aside, I still do not see a reason to run AV on Android phones.
Trooper is offline  
Reply With Quote
Old October 3rd, 2012, 11:58 AM   #6 (permalink)
Senior Member
Thread Author (OP)
 
Kamau's Avatar
 
Join Date: Dec 2010
Location: S.W. Lower Michigan
Gender: Male
Posts: 1,032
 
Device(s): Motorola Xoom, Galaxy S3, Galaxy Note 3
Carrier: Virgin Mobile, T-Mobile

Thanks: 155
Thanked 118 Times in 92 Posts
Default

Quote:
Originally Posted by Trooper View Post
All this aside, I still do not see a reason to run AV on Android phones.
Maybe not yet, but soon. It's only a matter of time before those people that have too much time on their hands and no respect for others, make it necessary.
Kamau is offline  
Reply With Quote
Old October 4th, 2012, 06:16 PM   #7 (permalink)
Senior Member
Thread Author (OP)
 
Kamau's Avatar
 
Join Date: Dec 2010
Location: S.W. Lower Michigan
Gender: Male
Posts: 1,032
 
Device(s): Motorola Xoom, Galaxy S3, Galaxy Note 3
Carrier: Virgin Mobile, T-Mobile

Thanks: 155
Thanked 118 Times in 92 Posts
Default

Man-in-the-Browser malware scam goes universal - CSO Online - Security and Risk

As I said before, it won't be long before just being cautious with what you download won't be enough.
9to5cynic likes this.
Kamau is offline  
Reply With Quote
The Following User Says Thank You to Kamau For This Useful Post:
9to5cynic (October 4th, 2012)
Old October 4th, 2012, 09:20 PM   #8 (permalink)
Senior Member
 
9to5cynic's Avatar
 
Join Date: Feb 2011
Location: /home/
Posts: 4,858
 
Device(s): Galaxy S3 (Verizon) Evo 4G - retired/rooted
Carrier: Verizon

Thanks: 3,066
Thanked 1,763 Times in 1,189 Posts
Send a message via AIM to 9to5cynic
Default

^ is that the zeus botnet?
Ahh, I'll just check it out in a minute. Man in the browser is so genius. One of my favorites. So long as it's not on *my* computer.

EDIT:

Okay, so it doesn't go into details really. Instead of just going for specific fields, it'll grab everything and parse it on the spot. Cool. But the researches say it isn't in the wild yet. Well, that's probably because it is in beta. I'm guessing that it's just too expensive for the criminals to buy from the authors at this point.... and the MitB is working wonders as is.

Very cool article. You're getting a 'thanks' and a 'like' for that.
9to5cynic is offline  
Last edited by 9to5cynic; October 4th, 2012 at 09:24 PM.
Reply With Quote
Reply


Go Back   Android Forums > Android Forums Community > The Lounge
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -5. The time now is 08:51 AM.
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.