Samsung Galaxy S4, Galaxy Note 3, Nexus 5 and Other Android Users Advised Against Using PCs and Malware Threat
By Precious Silva | January 28, 2014 5:45 PM EST
Android users like owners of Samsung Galaxy S4, Galaxy Note 3 and Nexus 5 should be careful of new threats threatening their systems. According to latest reports, a number of Android users may be at risk of losing important information or files when using personal computers. Any Android-running tablet or smartphone can be at risk of the latest malware threat soon as they plugged into PCs.
A Samsung Electronics' Galaxy S4 (front) and Apple's iPhone 5 smartphones are seen in this picture illustration taken in Seoul May 13, 2013.
The new malware threat is called Droidpak. Researchers from Symantec were not able to show or share how the malware gets deliver to potential victims. Still, they emphasize that Android users should be careful of the malware.
Initially, the malware puts out a malicious DLL including registers functioning as a system service. It accesses a remote server and opens a configuration file from it. The contained information allows the malware to get a malicious Android application package or APK file. It also downloads an Android Debug Bridge tool when needed.
The Brige tool allows the malware to put malicious APK to any device so long as it is based on Android. Once the victim connects to the computer, the Android device can be accessed. Once the malware has been installed, it will pose as a "Google App Store" application. However, it looks for online banking apps and other similar information in the background.
When it finds the right apps, the malware will prompt the user to delete the device and provide a bogus pretext. It will persuade the user to get a malicious equivalent. Once the user enters their credentials, the malware acquires the information. Another alarming capability of the threat is that it can intercept and delete SMS messages. This means it can delete messages from the bank. It prevents notifications from reaching the user.
According to a report by Net Security Organization, the malware combination is aiming at Korean users. However, it can be easily tweaked to target other users around the world. It can go around the globe searching for online banking applications. This poses as a threat to all Android users.
Fortunately, the malware needs the user to complete the installation of the malicious application. People should stay vigilant when unknown apps suddenly propose itself. USB debugging on the Android device may also help prevent the infection vector.
Users are also advised to install a reliable antivirus solution on their computers to avoid problems.
To contact the editor, e-mail: