Android News, Articles and Updates

Researchers believe malicious Android app written in code may be a first

Researchers have discovered a fake utility app called Swift Cleaner that they believe may be the first Android mobile malware developed using the open-source Kotlin programming language.

New adware found in fake Flashlight apps with dark intentions

A newly discovered mobile adware program called LightsOut was recently observed in 22 fake Android flashlight and utility applications, reportedly prompting their removal from the Google Play Store.

Mobile credential-stealer uses deep link to mimic Uber app

A credentials-stealing malware program disguised as an Android app was recently found spoofing an Uber user interface, and even leveraging a deep link uniform resource identifier from the ride-sharing app to appear legitimate.

AnubisSpy malware steals data, seemingly links to old Sphinx campaign

A newly discovered spyware that victimises Arabic-speakers has been potentially linked to the 2014-15 Sphinx cyber espionage campaign, which was launched by the threat group APT-C-15 to target PC users in the Middle East.

Android Flaw could enable hackers to modify code without signature change

A serious vulnerability in Android could put millions of devices at risk from attackers modifying code in applications without affecting their signatures.

ParseDroid vulnerabilities could affect all Android developers

Checkpoint researchers discovered several vulnerabilities in Android application developer tools that put any organisation that does Java/Android development at risk of an outsider gaining access to their system.

Three more Android malware families invade Google Play Store

Collectively downloaded millions of times, 158 fake Android applications containing mobile malware were recently found smuggled into the Google Play Store.

ToastAmigo malware uses new twist to attack Toast overlay vulnerability

A new malware uses an updated methodology to abuse the previously patched Android Toast overlay vulnerability, which once installed, can download additional malware as well as use various permissions to access the phone.

LokiBot Android Banking Trojan turns into ransomware in last ditch effort

An Android banking trojan dubbed LokiBot turns into a ransomware when users try to remove its admin privileges in a last ditch effort to extort the user.

Android malware on Google Play grows botnets, launches DDoS attacks

The Sockbot malware has made its way into at least eight Apps in the Google Play Store with the intent of adding devices to botnets and performing DDoS attacks.

All pre-8.0 Androids vulnerable to overlay attack; mitigations toasted

A new vulnerability has been discovered affecting older versions of the Google Android Platform.It can be used to easily enable an "overlay attack", tricking the user into unwittingly installing malware onto the device.

Mac users under attack as never before- android ransomeware up 138%

In the first half of 2017, incidences of Android malware increased more than five percent since the start of the year. Most notably, incidents of Android ransomware increased 138 percent in Q2 .

SpyDealer Android malware steals data from Facebook, Skype, other apps

Highly sophisticated SpyDealer malware attacks Android operating systems and can exfiltrate data from a range of popular apps.

Secure log-ins on Android, iOS phones simplified by Microsoft Authenticator

A new Microsoft Authenticator app feature sends device owners a notification when they sign in, rather than a one-time code to enter. Users simply tap an "Approve" button to access their accounts.

Researchers find 132 apps on Play Store infected with iFrame malware

According to the researchers, the apps were infected with "tiny hidden iFrames that link to malicious domains in their local HTML pages".

Fragmentation-nation: only 1.2% of Android devices use latest OS

With such low adoption rates of the latest security patches, security bods have said it is increasingly difficult to protect Android users who might not be tech-savvy enough out of harm's way.

ICYMI: HMRC/DMARC; Windows Vul; UK-China; IDF hack; Vendor hid attack

In Case You Missed It: HMRC implements DMARC; Windows bug revealed; UK-China cooperation; ViperRat hacks Israeli defence; Supply-chain attack hidden

State-sponsored hackers turn to Android malware to spy on Israeli soldiers

ViperRat discovered by researchers, designed to exfiltrate data from Israeli Defence Force via Android phones using honey traps.

ICYMI: Intel CPU flaw; HR Ransomware; Schools ransomed; Android tops CVE, Meters explode?

In Case You Missed IT, this week's top stories on SCMedia were: Intel CPU vulnerability; German HR ransomware; Ransomware targets schools; Android most vulnerable; Exploding smart meters?

Android tops 2016 vulnerability list. Security industry says "meh!"

The Common Vulnerabilities and Exposures (CVE) statistics for 2016 are in and it doesn't make great reading for Google. Or does it? Davey Winder runs the numbers.

Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps

A newly discovered malware program that targets older versions of the Android OS has infected roughly 1.3 million Google accounts, currently breaching devices at a rate of 13,000 victims per day.

Banking Trojan seeks system privileges and can circumvent Android security

Comodo Threat Research Labs has recently detected the "Gugi/Fanta/Lime" family of financial malware within the Russian economic sector.

Researchers gain root access to Android devices using Rowhammer attacks

An international team of researchers have developed an exploit to "root" access Android phones made by LG, Samsung and Motorola using Rowhammer hardware attacks.

Ransomware became main threat to Android users in 1H 2016

The Android SLocker ransomware family accounts for 16 percent of mobile malware in the UK.

Android. Lockerscreen using pseudo-random passcodes

The Android.Lockerscreen ransomware is now using pseudorandom numbers and other tactics to prevent victims from unlocking devices without paying.

Google Play again used to host malware-laden apps; this time, Overseer

Google Play continues to be a playground for cybercriminals with Google recently having to remove four apps from the store because they were distributing a new form of malware dubbed Overseer.

Project Zero hacking contest targets remote code execution flaws

Google's Project Zero unveiled an Android hacking contest that aims to discover flaws on the Nexus 6P and 5X devices.

Twitoor first Android malware known to leverage Twitter for command and control

Researchers have found the first known Android mobile malware to use a Twitter account, rather than a traditional command-and-control server, to control infected devices.