Android Virus/Malware's That Could Get You Down
As the growth of android market, which made cyber-criminals to caught attention. Recently Malware attacks by attacker increased drastically. They can easily enter into the android mobile system and can steal the personal records from android owner. At present the malware's are getting advanced due to technology development. It is recommended always to stick to the official google play store applications to protect your device from malware.
Following are some types of malware used for attacking your device.
1. Ransomware Malware
This one is the most bothersome malware in the history of syber security, this malware attacks victim's device (computer, smartphone, wearable device etc.), encrypt the data from the device and show the message by demanding the money to unlock/decrypt the device. For this reason it is recommended to regularly backup the device data to the cloud. Ransomware can infect your device if you are using third party application,it can also be spread through other means such as infected emails and unsecured website. It can even hijack your phone's PIN and can use the device without owner's permission.
2. Android power off hijack
Android/PowerOffHijack discovered by AVG, is a type of malware that hijacks the process responsible for shutting down your smartphone, so that it appears to be off when in fact it’s functioning. It even plays the shutdown animation to convince you that it’s really turning off.
What this power off hijack does is it secretly takes pictures, makes calls, and sends messages while you think that your phone is turned off.
About 10,000 devices were infected as of February 18th 2015 with this malware. However, this type of malware only affects Android versions under 5.0, requires root access and has been found only on apps outside of Google Play Store.
To stay safe, don’t download apps from Chinese app stores or any unknown app stores. Always download your apps from Google Play Store.
3. Hummingbad malware
There are so many fun apps on Android. An IQ test, a history app, a very simple flash based game – all sounds innocent. Not all of them are bad or have malware. But the ones that do, they don’t attack immediately. They wait for a month or so before they begin their work. What these apps do is that they will present a fake pop-up saying ‘Your phone is slow. Click here to clean’ or 'Virus found, Click here to protect your device’. When you click on them, you will be taken to some random fake web page and app will start downloading/installing. None of the messages these apps display are true. Google had recently cracked down on these apps and removed them from Play Store for good.
It won’t hurt to repeat a good advice, do not download apps from Chinese app stores. Stay away from them.
4. Viking Horde
Viking Horde is the latest piece of malware to target Android devices. Researchers at Check Point recently discovered the malicious software, which mainly seems to be designed for ad fraud. What it does is uses a proxied IP address to disguise the ad clicks. What’s more, the malware creates a botnet, using these IP addresses, which could be potentially used to for DDoS attacks and more.
According to their findings, Viking Horde affects both rooted and unrooted devices alike. While unrooted devices are susceptible to the actions listed above, rooted devices are at a greater risk. On these devices, additional software is installed that allows it to execute any code remotely. What’s more, it uses your root access privileges to make it difficult, if not impossible to manually remove the malware.
The worst part about this particular infection is that it is hiding in apps that, until recently, were available on the app store. One game, Viking Jump was on the Google Play store since April 15th, and was still available as of yesterday. It had been downloaded an estimated 50,000 – 100,000 times. Depending on your region, it was listed at a Google Play top free app. Other apps include Parrot Copter, WiFi Plus, Memory Booster, and Simple 2048. All of these have been removed from the store at the time of writing.
5. Phishing Apps
Believe it or not, a phishing malware was enclosed in a popular gaming app that goes by the name of “Cowboy Adventure,” used to compromise the user’s Facebook credentials. It is a simple but relatively popular game that make use of 2D game engine “Platformer 2D.”
The security and malware researchers detected these apps as Trojan named “Android/Spy.Feabme.A”. There were two apps on Android Play Store that contained the same malicious functionality, one was “Cowboy Adventure” and the other one was “Jump Chess.” And the developers of these gaming apps used it as a tool to collect Facebook IDs and passwords of the users.
These malware comprising apps did work as genuine apps but additionally they used to fraud with the users.
During installation, the app didn’t request for any suspicious permissions, but after successful installation once the app has been launched by user, a phishing activity is logged i.e. the app pops up a fake Facebook login screen.
If the user is novice and didn’t pay close attention to the screen then it is most likely that the user will fell for the trick and enter their Facebook username and password, which would be instantly sent to the hacker’s server.
6. Sextortion malware:
Sextortion is an online blackmail where the victim is persuaded into performing sexual acts that are secretly recorded. The attacker then threatens to upload the video and send it to their friends or relatives if the victim doesn’t give in to their demands. These attacks are common in Asian countries.
However, these cyber criminals are getting smarter and smarter. What they are doing now is they pretend they are experiencing some sort of audio problems on chat apps like Skype and ask you to download a chat app of their choice. Once this chat app is installed on the device, it collects the user’s contacts and sends them to the criminal. The criminal then uses these contact information as a mean of a threat to extort more money from the infected user by threatening them to share the video with the user’s close family and friends.
The best way to avoid this is to never install any app from unknown websites or Asian websites. Google is your best friend and searching Google for the app before you install it can save you a lot of headaches.
How to get secured from malware?
F-Secure reported that 97% of mobile malware is on Android. But just because 97% of malware is on Android it certainly doesn’t mean Android is insecure. The best practice to stay safe is to only install apps from Google Play Store. Always read the reviews and do a bit of research of apps that are not very well known. Note that mostly malware can be found on unofficial app stores, or websites that let you download “hacked” apps.
If you want to secure your mobile device from malware there are some best practices which we should follow. Following tips will secure your mobile device from malware attack.
1. Application from trusted sources
Always download application from the trusted sources like google play store.You should only give permission to that application which will be downloaded from trusted sources. Companies should make their own application store to distribute custom app.
2. Refer description of application
Do some research about developer, rating on application etc. Also research on ratings and reputation of developer.
3. Turn off Unknown source option
If you are using android device you should first disable unknown source application option. You will find unknown application option in setting.
To allow/disallow app installs of unknown apk's, follow this steps:
1. Go to Settings -> Security
2. Check the option Unknown sources
3. Tap OK on the prompt message
4: Finally… Use common sense
Protection is all well and good, but it pays to be cautious.
First and foremost beware while surfing on the internet don’t click on dodgy links, links that says they can protect you from virus (Really!!! a virus that will protect me from virus), Be smart when trying to download illegal stuff and always delete app's, file/folders in storage or anything that looks suspicious. Email hacking is very common - you may receive an email from a trusted source containing a YouTube link with an unusual heading – don’t click on the link and, if your email app allows it, flag the message as spam or junk mail.
Additionally, if you get a spam text message informing you you’ve won a prize, delete it. If you haven’t entered a competition, you’re highly unlikely to have won a prize.
0 comments: