Android Trojan spotted assisting click fraud

Powered by SC Magazine
 

HongTouTou causes a stir.

A new Android Trojan has been spotted, designed to both pilfer data and aid click fraud.

The Trojan, known as HongTouTou, was spotted on Chinese third-party app stores, purporting to be legitimate downloadable programs, such as mobile wallpapers.

According to F-Secure, the malicious piece of kit looks like it has so far only been distributed only in Chinese markets and may only be specific to networks in China.

Infected applications could allow the Trojan, also being referred to as ADRD and Geinimi, to enable or disable network data access.

Furthermore, data on an infected phone may be transmitted to a remote host.

"Another functionality is the possible downloading of an APK named myupdate.apk, which is saved to /sdcard/uc /folder. This is possibly for its update component," F-Secure said in a blog post.

The Trojan cannot be found on the official Google Android Market and only rogue users accessing third-party app stores will place themselves at risk.

“The assumption has to be that those behind the Trojan horse might be earning commission through the click traffic. Furthermore, of course, it could hurt you in your pocket by eating up data bandwidth,” said Graham Cluley, senior technology consultant at Sophos, in a blog post.

“Those who do install applications from unknown sources (known as "sideloading") do need to recognise that they might be putting their smartphone, data and potentially finances in danger.”

This article originally appeared at itpro.co.uk

Copyright © ITPro, Dennis Publishing


Android Trojan spotted assisting click fraud
 
 
 
Top Stories
Beyond ACORN: Cracking the infosec skills nut
[Blog post] Could the Government's cybercrime focus be a catalyst for change?
 
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1804

Vote
Do you support the abolition of the Office of the Information Commissioner?