Trojan

Android Master Key exploit “could affect” 900 million devices

Bluebox Security has recently gone public with an exploit that is said to be able to affect up to 900 million Android phones. And if that number doesn't sound scary enough for Android users, putting it another way and you are looking at 99 percent of all Android phones that are in the wild. This exploit is referred to as 'Master Key' and it has apparently been around since Android 1.6 Donut -- around 4 years now.

Concept app steals keyboard taps via phone sensors

Hey, security researchers. We appreciate what you do. But the world of malware is worrisome enough without yo giving the bad guys even more ideas. A graduate student at Pennsylvania State University has upped the creepy factor by creating a concept app that can steal keylogging information by surreptitiously reading information from a smartphone's various sensors, like the accelerometer. The app is called "Taplogger", and it's just a proof of concept. For the moment.

Fake Angry Birds Space app is a trojan in disguise

Angry Birds Space is a lot of fun. No, really, it justifies the hype - if you haven't tried it yet, download the free game in the Google Play Store. But for Pete's sake, make sure you're using the Google Play Store: a fake app is unsurprisingly masquerading as the ultra-popular mobile game to add Android phones and tablets to its network of infected devices, remotely downloading more malicious apps and displaying ads. Security researchers at Sophos spotted the fake app in third-party app stores, but says that the official Rovio files are not affected.

Android.Arspam is the latest malware threat, says Symantec

There's been a lot of news in the last few months about Trojans and other malware aimed at Android devices, and with millions of new phones and tablets being sold every week, that's not likely to change any time soon. Security software vendor Symantec has identified the latest Trojan to gain a major foothold, called "Android.Arspam". The Trojan imitates a legitimate app in the Android Market designed to aid Islamic prayers with a compass pointing towards Mecca, and has found its way onto an increasing number of Middle Eastern Android phones.

Google removes 22 SMS Trojans from the Android Market

Microsoft may like playing fun at the growing Android malware problem, but you'd have a hard time convincing most regular users that it's an issue. That's mostly down to admirable vigilance on Google's part in keeping the Market clean of malware and Trojans, as evidenced by their latest sweep, wherein no less than 22 fake apps were removed at once. AndroidGuys reports that all of them came from a single source, labelled as ReFraud, and were disguised as various popular but not overly obvious apps, like wallpapers and simple games.

Webroot warns of rogue Russian trojan networks

If you are the sort that downloads apps for alternative markets for your Android device, security firm Webroot has a warning for you. According to the company, there is a new network of convincing fake app stores that are pushing rogue apps with trojans inside. So far, most of the websites in the network that have been found are in Russian language.

‘Battery Upgrade’ malware shows users how to make their phone vulnerable

Is anybody feeling some 90s nostalgia right about now? It seems like hardly a day goes by where we don't hear about some sneaky new way for hackers and identity thieves to compromise incautious Android users' phones. The latest is a "battery manager" app that not only compromises your data, but gives you a quick lesson on how to open up the "unknown sources" app install method your phone for easy exploitation. Once installed the app steals your phone number, email address, unique IMEI code and other personal information.

QR code infects Android phones with Trojan malware

The next time you see a QR code in a public place, you might want to think twice before opening up Google Goggles. According to researchers at Kaspersky, a new Trojan has been found that uses the popular barcodes to steal Android users' hard-earned cash via a text message scam. The problem is not widespread at the moment, but the precedent highlights a disturbing trend of exploitation towards Android users.
1 2