Saturday, September 11, 2010

Second Android Virus(Malware) now starts Attack via Tempting Content.

We know that named Trojan-SMS.AndroidOS.FakePlayer.b was the Malware to attack the Android phone. This raised the question on Android Saftey for the users.

Kasperksy Lab has detected a second piece of malware, categorized as a Trojan-SMS, which targets smartphones running on the Android platform.

This trojan needs your 'permission' to download and then install. Users of smartphones running Android are asked to download the pornplayer.apk application from an infected webpage in order to view adult content videos.

The installation file is only 16.4 KB and during installation the Trojan seeks the user's consent to send SMS messages which a very small for any Media Player app.

Once the user launches the fake application, Trojan-SMS.AndroidOS.FakePlayer.b begins sending SMS messages to a premium rate number without the user's knowledge. The messages cost $6 each, resulting in hefty sums being transferred from the user's account to that of the Malware originators.

"Android users should pay close attention to the services that an application seeks permission to access," said Denis Maslennikov, Mobile Research Group Manager at Kaspersky Lab.

"Automatically permitting a new application to access every service that it says it needs to means you could end up with malicious or unwanted applications doing all sorts of things without requesting any additional information."

The code insideTrojan-SMS.AndroidOS.FakePlayer.b is similar to that of Trojan-SMS.AndroidOS.FakePlayer.a – the first Android Trojan-SMS that was detected by Kaspersky Lab experts a month ago. This suggests that both of these malicious applications were authored by one and the same person, or group of people.

Android OS is based on GNU/Linux which is secure by design. However, users are adviced to be careful to not install anything they don't know.

- muktware.com Inputs

No comments: