Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT tid,hits,start_time FROM biztimes_stats.stats_articles_au WHERE tid='547009' Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT cmt_count FROM ib_articles_counts WHERE id='547009' Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT * FROM ib_sources WHERE id='3001' Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT * FROM ib_articles_options WHERE article_id='547009' Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT article_id FROM ib_topics_index WHERE tid='352' ORDER BY id DESC LIMIT 10Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT article_id FROM ib_topics_index WHERE tid='227' ORDER BY id DESC LIMIT 10Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT * FROM ib_rates WHERE article_id='547009' LIMIT 1 Advanced Malware Targeting 'Android Users'; Over 1M Devices Affected Worldwide - International Business Times

Advanced Malware Targeting 'Android Users'; Over 1M Devices Affected Worldwide

  • Rate this Story
  • 0
  • 0

By Pavithra Rathinavel | April 7, 2014 9:26 PM EST

Invariably, the most targeted mobile platform by hackers is the Android platform.

A couple of months back, The Hacker News reported that a new malware for Android platform has been detected that lodges in the memory of the infected device and launches itself during the OS booting phase. Upon removing the malware, some parts of the malware will remain in the memory of the device and will re-install the malware after a reboot, thus infecting the device once again without any intervention.

Reuters
A Google Android figurine sits on the welcome desk as employee Tracy McNeilly smiles at the new Google office in Toronto, November 13, 2012.

According to BGR, "Only Android users from certain regions of the world are affected because Google's standard Android services aren't available to them. "

The earlier version of the threat was named as 'Oldboot.A' by Russian security firm Doctor Web and it has affected more than a million devices thus far. These are some of the affected regions across the world, China, Spain, Italy, Germany, Russia, Brazil, the USA and some Southeast Asian countries.

The recent news is that, there is a new variant of the Oldboot family, dubbed 'Oldboot.B', engineered similar to the earlier version of Oldboot spreading across the world. This malware has very advanced and twisted stealth techniques that they can be defensive against antivirus, malware analyzer, and even automatic analysis tools, according to researchers from Chinese security firm 360 Mobile Security.

The new Oldboot.B Android malware can install malicious apps in the background, inject malicious system process modules, and can defend malware apps from uninstalling even with manual intervention. This malware also has the capability to modify the browser's homepage and uninstall the antivirus software in the device. In addition, the infected devices can send fake text messages, and start phishing attacks, among the others.

Do we Have an Antivirus Software?

According to The Hack News, the security firm 360 Mobile Security has developed an antivirus software that can detect and remove Oldboot malware for free. Users can download the same from their website.

How to Avoid Such Attacks?

Here are the three ways one can avoid getting attacked by sophisticated malwares of any kind, claims The Hacker News.

- As a rule of thumb, Android users should install apps only from trusted sources.

- Users should ascertain the Android system setting 'Unknown sources' is unchecked to thwart dropped or drive-by-download app installations.

- Users should avoid using questionable custom ROMs.

- Users must install a credible mobile security app.

To contact the editor, e-mail:

(Photo: Reuters / )
A Google Android figurine sits on the welcome desk as employee Tracy McNeilly smiles at the new Google office in Toronto, November 13, 2012.
Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT id FROM ib_slideshows WHERE timestamp>1413970199 AND hits>0 AND outkey='Y' ORDER BY hits DESC LIMIT 10Host 'subweb.ibtimes.com' is not allowed to connect to this MySQL serverSELECT id FROM ib_slideshows WHERE timestamp<1413970199 AND timestamp>1413710999 AND hits>0 AND outkey='Y' ORDER BY hits DESC LIMIT 10
  • Rate this Story
  • 0
  • 0

Join the Conversation

IBTimes TV
E-Newsletters

We value your privacy. Your email address will not be shared.