Hey folks, question for you...
A website I use from time to time appears to have been compromised by hackers (it redirected to a Russian website and started downloading an APK). I have told the website owners and they've fixed it.
A glutton for punishment (and because I couldn't believe the site had been hacked), I visited the site several times using my Nexus 5, to make sure this was actually happening. The download seems to have started a few times, but may have completed at one point (I think the phone asked me "Are you sure you want to download this file? It potentially contains malware" or something along those lines - this was a few weeks ago, so I don't remember everything I did).
My question is this - I had enabled installation of APKs that I didn't get from the Android store (since re-disabled). In a situation like what I described, can a download from a website *force* an installation of a malicious APK? I believe I answered "no" to Android's question about if I wanted to download the file, but if I had said "yes" by accident, would I still see some kind of installation method?
I ran a couple of anti-malware checkers on the phone afterwards, and they found nothing.
I'm just getting paranoid, so wanted to check here to see if anyone's experienced this before, and what I should expect my phone to have told me in a case like this.
- Tim
A website I use from time to time appears to have been compromised by hackers (it redirected to a Russian website and started downloading an APK). I have told the website owners and they've fixed it.
A glutton for punishment (and because I couldn't believe the site had been hacked), I visited the site several times using my Nexus 5, to make sure this was actually happening. The download seems to have started a few times, but may have completed at one point (I think the phone asked me "Are you sure you want to download this file? It potentially contains malware" or something along those lines - this was a few weeks ago, so I don't remember everything I did).
My question is this - I had enabled installation of APKs that I didn't get from the Android store (since re-disabled). In a situation like what I described, can a download from a website *force* an installation of a malicious APK? I believe I answered "no" to Android's question about if I wanted to download the file, but if I had said "yes" by accident, would I still see some kind of installation method?
I ran a couple of anti-malware checkers on the phone afterwards, and they found nothing.
I'm just getting paranoid, so wanted to check here to see if anyone's experienced this before, and what I should expect my phone to have told me in a case like this.
- Tim