SCF Advanced Search



Members
  • Total Members: 14197
  • Latest: Levine
Stats
  • Total Posts: 43459
  • Total Topics: 16548
  • Online today: 3064
  • Online ever: 51419
  • (01. January 2010., 10:27:49)
Users Online
Users: 4
Guests: 3006
Total: 3010









Author Topic: Samsapo malware spreads by sending text messages (Android/Samsapo.A)  (Read 9364 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7529
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum


A piece of malware targeting Russian-speaking Android users abuses a person’s contact list to try and infect other devices, according to security vendor Eset.

The malware, call “Android/Samsapo.A” can download other malicious files to a phone, steal personal information from a device such as text messages and block phone calls, wrote Robert Lipovsky, an Eset malware researcher: http://www.welivesecurity.com/2014/04/30/android-sms-malware-catches-unwary-users/
The malware uploads data to a domain that was registered about a week ago.

Samsapo spreads by sending text messages from an infected device to other people in the victim’s contact list, a worm-like characteristic that has been used by other mobile malware programs.

The text message says “Is this your photo?” in Russian and has a link to an Android application package (.APK) file containing a copy of Samsapo.

“This technique wouldnt raise an eyebrow on Windows, but is rather novel on Android,” Lipovsky wrote.

The APK file name makes it appear as a system utility: “com.android.tools.system v1.0.” The program doesn’t have a graphical user interface nor an icon in the application drawer, Lipovsky wrote.

Android will warn users when downloading applications from unknown sources. Google scans its Play store for malicious applications, which reduces the chance a user will download a malicious one.

Security experts generally recommend not downloading Android applications from third-party websites, as even legitimate looking applications may have been maliciously modified. Also, applications that ask for permissions such as reading and writing text messages should be viewed with caution.

(PCW)

Samker's Computer Forum - SCforum.info


 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.codekids.ba:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Kursevi programiranja za ucenike u Sarajevu

Terms of Use | Privacy Policy | Advertising
TinyPortal 2.3.1 © 2005-2023