EFY Times  
Monday, October 20, 2014

 
GO
 
 

Mobile Zeus Trojan Poses As Android Security Tools: Kaspersky Lab
 
Home >> Infotech >> Trends
 
Mobile Zeus Trojan Poses As Android Security Tools: Kaspersky Lab  
 
   
Rate this news:  (0 Votes)
Thursday, June 21, 2012 Researchers have discovered a set of malicious Android applications posing as security software in the latest example of malware targeting Google’s mobile platform. Kaspersky Lab has uncovered a set of malicious Android applications posing as security software. The malware is linked to the infamous Zeus Trojan, a common tool used in the theft of banking credentials. The phony security applications were first observed earlier this month, and newer versions have continued to appear, according to Kaspersky.






Malicious files
“On the 4th of June 2012 we found 3 APK files of ~207 kb in size each heuristically detected by our engine as HEUR:Trojan-Spy.AndroidOS.Zitmo.a,” blogged Kaspersky researcher Denis Maslennikov. “All these applications are malicious and were created to steal incoming SMS messages from infected devices. SMS messages will be uploaded to a remote server whose URL is encrypted and stored inside the body of the Trojan.”

The company found three more APK (application package) files with exactly the same functionality on 8, 13 and 14 June. Altogether there are at least six files that pretend to be “Android Security Suite Premium”, but in actuality steal incoming SMS messages, the researcher said.

The point of stealing incoming SMS messages is to swipe the victim’s mobile transaction authentication number (mTAN), which is used by banks to authenticate online bank transactions. When a device is infected, the SMS messages are uploaded to a remote server.

“One of the remote server domains was registered using the same fake data which was used for registering ZeuS C&Cs [command and control] servers back in 2011,” Maslennikov blogged.” And the malware’s functionality is almost the same as in old ZitMo samples [the mobile version of Zeus]. Therefore ‘Android Security Suite Premium’ = New ZitMo.”

Android malware on the rise
The issue of Android malware has been a focus security researchers and attackers alike for the past year.

Last week, Sophos released its list of the five most common pieces of Android malware. The most prevalent is what the company refers to as Andr/PJApps-C, which Sophos Senior Technology Consultant Graham Cluley described as an application that has been cracked using a publicly available tool that may or may not be actually malicious.

The second most popular is BaseBridge, which uses a privilege escalation exploit to elevate its privileges and install additional malicious apps onto a victim’s device. It also uses HTTP to communicate with a central server and leaks potentially identifiable information.

On 13 June authorities in Japan arrested six men for distributing a malicious Android app through a website that hosted adult content. According to The Daily Yomiuri, the Trojan was hidden inside an application that posed as a video player.

Once opened, the malware stole the victim’s information and sent it to a remote server. The application also displayed a message demanding a payment of 99,800 yen (£805). Symantec detects the rogue application as Android.Oneclickfraud.
Smartphone attack

“While there are countless numbers of sites aimed at scamming computer users, there have only been a handful of sites designed for smartphones to date,” blogged Joji Hamada, threat analyst with Symantec Security Response. “Out of those, we are aware of at least two sites affiliated with the site operated by the arrested men, and they are up and running…. So, with the arrest of the gang operating Android.Oneclickfraud I am hopeful that their sister sites will be taken down soon, with more arrests to follow. However, at the time of writing they show no sign of letting up.”



Print Email Post Comment 
(Total Views: 1004)
 
Share

 
 
Infotech News
   
Alibaba Cloud Computing’s Aliyun Worldwide Developer Conference Attracts More Than 10,000 Global Developers And Partners
Ultriva Software Available In Multiple Languages Supporting Global Supply Chain Demands
Zetta.net Offers Migration Program To Users Of Discontinued Backup Exec Appliance
Company Releases New Security Camera Technology
Facebook Poses Threat For YouTube As Top Video Sharing Site, Report Claims
 
 
 
     
     
     
     
     
     
Most popular
 

Daily

Future Of IoT Market (Internet Of Things) Reviewed In 2014-2020 Research Reports
NXT-ID To Showcase Biometric Wocket Smart Wallet At 2015 CES (Consumer Electronics Show)
The Samsung Rugby 4, To Arrive Exclusively At AT&T Oct. 10
Air Products Vice President Helps Simplify Complexities Of New Material Development In Semiconductor Industry
Walmart Names VTech's Kidizoom Smartwatch And Go! Go! Smart Wheels Ultimate Amazement Park Playset To Kid-Selected Holiday Toy List
Elbit Systems Of America Begins Testing WideBridge Solution,For Mission Critical Secure Broadband Services,With The Department Of Homeland Security
New Innovation Works Fund To Invest In Local Pittsburgh Tech Companies
Product Development Technologies (PDT) And Telefonix Featured Speakers At Back End Of Innovation (BEI)
VOXX International Corporation's Hirschmann Solutions Presents New Container And Trailer/Tracking Module
Chris Hickey Named Vice President Of Services & Support Solutions At Elbit Systems Of America
 
   

Weekly

Cloudera And Red Hat Forge Big Data Alliance
Android 5.0 Lollipop: 10 Most Exciting Features
Cloudera And Red Hat Forge Big Data Alliance
10 Best Open Source Tools For Windows Admins
10 Best VPN Service Providers To Ensure Online Privacy
Top 6 Video Tutorials on jQuery
Top 10 Reasons Why Java Programming Language Is A Must!
5 Ways In Which NFC Can Transform Your World!
10 Tricks To Get The Most Out Of Your Android Phone
Top 10 Tech Trends To Look Out For In Coming Year!
7 Best Tools To Ensure Browser Security
15 Most Helpful Video Tutorials For Android App Developers
10 Python Libraries Not To Be Ignored!
10 Best Browser Extensions Which You Must Have!
20 Open Source Alternatives To Video And Audio Apps
Top 10 Best Practices For Cloud Application Security
10 Steps To Take After Facing A Data Breach!
 
   

Overall

Agility Systems Deals in:

Document Management System for law firms
Features
Android 5.0 Lollipop: 10 Most Exciting Features
Since the preview, Google has added lots of new features to the final release of the latest Android version. Here we will discuss top 10 features of m...
GPS Technology: Know The Basic Facts
Let's take a look how this GPS technology is operated in our daily uses....
10 Best Open Source Web Application Security Scanning Tools
Here we'll provide you with a list of 10 open source tools which are used to detect security vulnerabilities in web applications....
5 Ways In Which NFC Can Transform Your World!
Let’s have a look at 10 ways how NFC can actually rock your world in the near future....
10 Exciting New Open Source Projects!
These projects cater to several categories like web content management, software defined networking, IT management, operating systems and more....
20 Open Source Alternatives To Video And Audio Apps
Here is a list of 20 such tools which make it easy to create, listen to and view digital audio and video content....
LED Technology: Know The Basic Facts!
Here we'll brief you about the LED technology and some top tutorials about the technology for beginners as well as advanced learners....
10 Best Browser Extensions Which You Must Have!
Here we are providing a list of 10 coolest Internet browser extensions for you, which are mostly cross-platform....
5 Most Exciting Job Opportunities For Video Game Developers
Demand for video game developers is always on a high and game studios usually pay handsome money to these developers....
10 Most Powerful Women Shining In The Tech World!
Though women are vastly outnumbered by men in this industry, we can still find out 10 most influential high-profile women in the tech world....
10 Personalities Who Redefined The Internet World!
Let's have a look at those 10 personalities who have transformed the Internet world in a bigger way....
10 Most Amazing Facts About 3D Printing Technology
3D printing technology is advancing fast and is becoming an integral part of mainstream technologies in the society....
10 Amazing Robots Transforming Medical World!
Here we will talk about 10 most useful medical robots which have huge potential to transform the healthcare sector....
7 Best Tools To Ensure Browser Security
Here is the list of 7 such browser security tools which you may find useful....
10 Best VPN Service Providers To Ensure Online Privacy
If you are using your home Internet or public Wi-Fi, VPN providers will ensure best security features and privacy guarantees....
 
  View All
Dialogue
 
10 Questions That Google Never Asks While Hiring!
Here is a list of 10 questions that Google just banned from their interviews....
For Enjay, Open Source Technology Is A Way Of Life
An entirely open source-based company, Enjay IT Solutions, has built itself a reputation in the OSS domain....
Switching To Tizen Doesn’t Mean We Are Abandoning Android: Samsung
The company has worked to build Tizen up from scratch and has now introduced it to developers and the general public with its latest range of wearable...
Venturing Into The Cloud? Develop A Customised Cloud Strategy First!
Diksha P Gupta speaks to Rushikesh Jadhav, cloud evangelist, ESDS Software Solution Pvt Ltd, on how the cloud has changed the way compan...
HTC Is Strong And There Are No Plans Of Sale Now Or In Future, Says HTC's Senior Director-Marketing
Atithya Amaresh from EFYTimes had an exclusive chat with Sirpa H. Ikola, senior director, Marketing, South Asia, HTC about its devices and its plans w...
   
  View All
Videos
 
First Look: LG Optimus G
The phone sports a high-end display and comes powered by a powerful processor. ...
Create QR-Codes For Free
TEC-IT releases the freeware QR-Code Studio to provide a quick and convenient way of QR code creation for every application scenario....
DoT Secretary Shares Plans For Growth Of Telecom Sector
M.F. Farooqui has recently taken charge as secretary, Department of Telecom....
Hands-On: Sony Xperia Z
Xperia Z is Sony's first entrant model in the big-screen smartphone category. ...
Hands On: Videocon A30 Smartphone
Videocon, the consumer electronics company which is known for its refrigerators, washing machine and air-conditioner has unveiled its Android-based sm...
   
View All
   
 
IFA 2014
 
IFA 2014: LG Launches 34-Inches Curved Monitor
The company is yet to confirm price and availability of the device....
IFA 2014: Intel Launches First Core M Range Of Processors
This range of processors is tailor-made for 2-in-1 devices which include a tablet and a laptop....
MWC 2014: Tablet Lets People Feel Textures On Its Screen
Now feel what you see on your tablet, by way of ultrasonic waves....
MWC 2014: 4K Android Tablet Games To Kill Consoles, iPad
Tablet makers like Samsung want to beat the iPad by making 4K tabs. ...
MWC 2014: This Vodafone Backpack Helps Get Network In Disaster Situations
Two engineers of Vodafone New Zealand displayed the "mini" mobile network by Vodafone substructure in a backpack. ...
MWC 2014: Wilocity Chipset To Bring 'Lightening' Speed To Mobile Phones
Wilocity has developed a WiGig chipset for mobile phones that will bring lightning-fast wireless capability ...
MWC 2014: Samsung Introduces Octacore, Hexacore Chipsets
The Korean giant, Samsung unveiled two new octacore and hexacore chipsets at MWC 2014, in Barcelona. The company previously used Exynos 5 Octa 5410 ch...
   
View All
   
 
Events
 
19th Consumer Electronic Imaging Fair To Be Held On ...

View All
   
   
 
 

home archives contact us advertise with us
           
Magazines Portals Directories Events News Verticals Educational Institute  
Electronics for You
Open Source for You
Electronics Bazaar
electronicsforu.com
efytimes.com
opensourceforu.com
electronicsb2b.com
Electronics Annual Guide
EFY EXPO INDIA
EFY EXPO WEST
ELECTRONICS ROCKS
EFY Awards
OSIDAYS Expo
Electronics
Infotech
Linux & Open Source
Consumer Electronics
Science & Technology
BPO
EFY Techcenter

Educational Kits
Kitsnspares.com  
 
 
© Copyright 2014 EFY Enterprises Pvt. Ltd.
All rights reserved. Reproduction in whole or in part in any form or medium without written permission is prohibited.
Usage of the content from the web site is subject to Terms and Conditions