EFY Times  
Saturday, March 28, 2015

 
GO

Mobile Zeus Trojan Poses As Android Security Tools: Kaspersky Lab
 
Home >> Infotech >> Trends
 
Mobile Zeus Trojan Poses As Android Security Tools: Kaspersky Lab  
 
   
Rate this news:  (0 Votes)
Thursday, June 21, 2012 Researchers have discovered a set of malicious Android applications posing as security software in the latest example of malware targeting Google’s mobile platform. Kaspersky Lab has uncovered a set of malicious Android applications posing as security software. The malware is linked to the infamous Zeus Trojan, a common tool used in the theft of banking credentials. The phony security applications were first observed earlier this month, and newer versions have continued to appear, according to Kaspersky.






Malicious files
“On the 4th of June 2012 we found 3 APK files of ~207 kb in size each heuristically detected by our engine as HEUR:Trojan-Spy.AndroidOS.Zitmo.a,” blogged Kaspersky researcher Denis Maslennikov. “All these applications are malicious and were created to steal incoming SMS messages from infected devices. SMS messages will be uploaded to a remote server whose URL is encrypted and stored inside the body of the Trojan.”

The company found three more APK (application package) files with exactly the same functionality on 8, 13 and 14 June. Altogether there are at least six files that pretend to be “Android Security Suite Premium”, but in actuality steal incoming SMS messages, the researcher said.

The point of stealing incoming SMS messages is to swipe the victim’s mobile transaction authentication number (mTAN), which is used by banks to authenticate online bank transactions. When a device is infected, the SMS messages are uploaded to a remote server.

“One of the remote server domains was registered using the same fake data which was used for registering ZeuS C&Cs [command and control] servers back in 2011,” Maslennikov blogged.” And the malware’s functionality is almost the same as in old ZitMo samples [the mobile version of Zeus]. Therefore ‘Android Security Suite Premium’ = New ZitMo.”

Android malware on the rise
The issue of Android malware has been a focus security researchers and attackers alike for the past year.

Last week, Sophos released its list of the five most common pieces of Android malware. The most prevalent is what the company refers to as Andr/PJApps-C, which Sophos Senior Technology Consultant Graham Cluley described as an application that has been cracked using a publicly available tool that may or may not be actually malicious.

The second most popular is BaseBridge, which uses a privilege escalation exploit to elevate its privileges and install additional malicious apps onto a victim’s device. It also uses HTTP to communicate with a central server and leaks potentially identifiable information.

On 13 June authorities in Japan arrested six men for distributing a malicious Android app through a website that hosted adult content. According to The Daily Yomiuri, the Trojan was hidden inside an application that posed as a video player.

Once opened, the malware stole the victim’s information and sent it to a remote server. The application also displayed a message demanding a payment of 99,800 yen (£805). Symantec detects the rogue application as Android.Oneclickfraud.
Smartphone attack

“While there are countless numbers of sites aimed at scamming computer users, there have only been a handful of sites designed for smartphones to date,” blogged Joji Hamada, threat analyst with Symantec Security Response. “Out of those, we are aware of at least two sites affiliated with the site operated by the arrested men, and they are up and running…. So, with the arrest of the gang operating Android.Oneclickfraud I am hopeful that their sister sites will be taken down soon, with more arrests to follow. However, at the time of writing they show no sign of letting up.”



Print Email Post Comment 
(Total Views: 1089)
 
Share

 
 
Infotech News
   
Orad Presents 3D Pre-Visualization At NAB Booth SL6317
Lukup Media Partners Google Widevine For Its Multi-Screen TV Platform
Nucleus Software’s FinnOneTM Wins The Global No. 1 Lending Product Award By IBS Publishing, AGAIN
Amazon Launches Unlimited Cloud Storage Service
Xiaomi To Unveil New Products On 31 March
 
 
 
     
     
     
Most popular
 

Daily

Weekly

Arrow’s Gretchen Zech Named One Of The Most Powerful Women In HR By Human Resource Executive Magazine
Now Your Kids Can Also Experience 3D Printing With A New App!
Microsoft Launches Latest Budget Phone Lumia 430
FedDev Ontario Supports Global Growth Of Wysdom Software Platform For Mobile Devices
Best Alternatives To Google Code For Programmers
Microsoft Partners With Android Manufacturers
Samsung Health And Medical Equipment Sponsors Heart Across America Cycling Tour Kicking Off March 22
8 Open Source Tools For Windows
New Live Or On-Demand Online Courses Develop Human Resources And Technology Skills For Leaders In Business Of Law
8 Coolest Cloud Programming Langauges
7 Tips To Mitigate Data Breaches
GreenPeak Launches Smart PIR Sensor For Smart Home Applications
Top 8 Python Frameworks For Web Developers
Cloud-Based 3D Printing OS Launched By 3DPrinterOS
Top 8 Best AngularJS Tools For Web Developers
Facebook Faces Legal Action For Sexual Harassment!
 
   

Overall

Features
6 Must Have Tools For Java Professionals
Here is the list of tools for Java developers that are proven to get the job done efficiently....
8 Coolest Cloud Programming Langauges
If you are looking to master in programming languages, here are eight great options among cloud computing world....
7 Tips To Mitigate Data Breaches
Here are seven tips you can follow to avoid data breaches in your organisation!...
Top 8 Python Frameworks For Web Developers
Working with a web framework helps you jump-start your web application. Here are eight best Python Frameworks for web developers....
Best Alternatives To Google Code For Programmers
Google is shutting down Google Code, their hosting service for open source projects and coding initiatives. Here are a few alternatives that can get y...
Top 8 Best PHP Tools For Analysing And Parsing Code
Here are some of the best PHP Tools that will help programmers to analyse and parse their programming code....
8 Open Source Tools For Windows
Here are top eight free open source tools by Microsoft....
7 Tips To Avoid Getting Scammed On Internet
Online frauds and scams are nothing new to us. Here are seven tips that you can follow to protect yourself online....
7 Best Java IDEs For Programmers
Here is the comprehensive list of some of the most popular and praised IDEs for Java....
5 Reasons To Take Up Job In A Tech Company
Are you looking for an informal workplace full of new ideas and advancement opportunities? You should consider a career in tech!...
8 New Trends Among Mobile Developers
A new survey of mobile app developers reveals some interesting facts about their work....
6 Tips To Protect Important Data
Here are few considerations security processes that can be good enough to ensure a the basic level of security to users....
Top 8 Best AngularJS Tools For Web Developers
There is a long range of AngularJS tools available in the internet. Today we have mentioned eight best AngularJS tools for web developers....
8 Tips To Build HTML5 Based Mobile Apps
A great HTML5 app, which could make waves in app stores, requires to be built with planning. Here are 8 tips that can help you in building HTML5 based...
5 Latest Versions Of Top Linux Distros
Linux has over 600 existing distributions; among which 300 are in active development. Here are top five latest linux distros....
 
  View All
Dialogue
 
We Have Registered 50 Per Cent Growth In The Last Two Years: Arihant Lighting
Apart from LEDs, Arihant is associated with the promotion of renewable energy in India and therefore, manufactures various energy saving products....
“Elcom Plans To Build A New State Of The Art R&D And Manufacturing Unit In Maharashtra", Reveals MD Girish V Vaze
Starting out as a small business to cater to the industry’s need for import substitutes, Elcom International has grown to be a leader in the field of ...
Delta Magnets Ltd To Enter Into JV With Chinese Company!
The company had partnered with TDK Japan for technology transfer to manufacture magnets in India....
"Littelfuse Is Growing At Around 20-25 Per Cent In India And Expect That To Continue", Predicts VP Deepak Nayar
On the electronics side, Littelfuse has registered an 8-10 per cent growth, year on year....
10 Questions That Google Never Asks While Hiring!
Here is a list of 10 questions that Google just banned from their interviews....
   
  View All
Videos
 
First Look: LG Optimus G
The phone sports a high-end display and comes powered by a powerful processor. ...
Create QR-Codes For Free
TEC-IT releases the freeware QR-Code Studio to provide a quick and convenient way of QR code creation for every application scenario....
DoT Secretary Shares Plans For Growth Of Telecom Sector
M.F. Farooqui has recently taken charge as secretary, Department of Telecom....
Hands-On: Sony Xperia Z
Xperia Z is Sony's first entrant model in the big-screen smartphone category. ...
Hands On: Videocon A30 Smartphone
Videocon, the consumer electronics company which is known for its refrigerators, washing machine and air-conditioner has unveiled its Android-based sm...
   
View All
   
 
IFA 2014
 
IFA 2014: LG Launches 34-Inches Curved Monitor
The company is yet to confirm price and availability of the device....
IFA 2014: Intel Launches First Core M Range Of Processors
This range of processors is tailor-made for 2-in-1 devices which include a tablet and a laptop....
MWC 2014: Tablet Lets People Feel Textures On Its Screen
Now feel what you see on your tablet, by way of ultrasonic waves....
MWC 2014: 4K Android Tablet Games To Kill Consoles, iPad
Tablet makers like Samsung want to beat the iPad by making 4K tabs. ...
MWC 2014: This Vodafone Backpack Helps Get Network In Disaster Situations
Two engineers of Vodafone New Zealand displayed the "mini" mobile network by Vodafone substructure in a backpack. ...
MWC 2014: Wilocity Chipset To Bring 'Lightening' Speed To Mobile Phones
Wilocity has developed a WiGig chipset for mobile phones that will bring lightning-fast wireless capability ...
MWC 2014: Samsung Introduces Octacore, Hexacore Chipsets
The Korean giant, Samsung unveiled two new octacore and hexacore chipsets at MWC 2014, in Barcelona. The company previously used Exynos 5 Octa 5410 ch...
   
View All
   
 
Events
 
19th Consumer Electronic Imaging Fair To Be Held On ...

View All
   
   
 
 

home archives contact us advertise with us
           
Magazines Portals Directories Events News Verticals Educational Institute  
Electronics for You
Open Source for You
Electronics Bazaar
electronicsforu.com
efytimes.com
opensourceforu.com
electronicsb2b.com
Electronics Annual Guide
EFY EXPO INDIA
EFY EXPO WEST
ELECTRONICS ROCKS
EFY Awards
OSIDAYS Expo
Electronics
Infotech
Linux & Open Source
Consumer Electronics
Science & Technology
BPO
EFY Techcenter

Educational Kits
Kitsnspares.com  
 
 
© Copyright 2015 EFY Enterprises Pvt. Ltd.
All rights reserved. Reproduction in whole or in part in any form or medium without written permission is prohibited.
Usage of the content from the web site is subject to Terms and Conditions