Android DreamDroid two: rise of laced apps

Powered by SC Magazine
 

DreamDroid Light hits up to 130,000.

A smartphone security firm claims to have found 26 legitimate Android apps that had been laced with malware. 

The once-legitimate applications were modified to include what researchers from security firm Lookout called a “stripped down version” of DreamDroid, which it dubbed DreamDroid Light.   

The malware is activated by an incoming call, according to Lookout’s spokesperson, Tim Wyatt, which meant that users would not have to launch the application to trigger its behaviour.

Lookout has estimated the applications have been installed on 30,000 to 120,000 devices.  

Like its predecessor, the tainted application sends identifiers (IMEI/IMSI) to the malware's distributors, however DreamDroid Light would require user-interaction to steer its way through an update.   

Google has removed the program while it investigates the claim, according to Forbes security blogger, Andy Greenberg

Lookout discovered the malware after a developer had alerted it to a modified version of one of his apps, which was being distributed on Google's Android Market. 

“Our security team confirmed that there was malicious code grafted into these apps and identified markers associating this code with previously analysed DreamDroid samples,” wrote Wyatt. 

A list of the affected apps, which ranged from “hot girls” to systems monitoring tools, can be found on Lookout’s website.

One of the apps, Hot Girls 1, had the capacity to create a “mobile botnet”, according to F-Secure chief researcher, Mikko Hypponen. 

In that instance, receiving a text message will activate malicious components of the app. 

“The added code will connect to a server and send details about the infected handset to the malware authors. So we're talking about a mobile botnet,” he said

Copyright © iTnews.com.au . All rights reserved.


Android DreamDroid two: rise of laced apps
 
 
 
Top Stories
Don’t mention digital disruption to David Whiteing
Buzzwords don’t curry favour with CBA's new CIO - it’s all just innovation to him.
 
Content, cost & constant innovation: How Foxtel plans to take on Netflix
Nell Payne inhabits the “brave new world of blue strings and networking”. Just don't ask her to put a TV screen on your microwave.
 
Westpac fires starting pistol on core banking upgrade
St George readies itself for move to Celeriti.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
Microsoft launches Office for Android preview
May 22, 2015
Microsoft has launched a preview of Office for Android smartphones. Pre-release versions of ...
Microsoft is working on an iOS email chat feature called Flow
May 22, 2015
Microsoft is working on a new chat app, but at the moment we know more about what we DON'T know, ...
Windows 10 free upgrade: Microsoft details who gets what
May 22, 2015
Microsoft was meant to be streamlining its OS with Windows 10, so why is upgrading so confusing? ...
Windows 10 has an edition to suit everyone's needs
May 15, 2015
Microsoft unveils a mind-melting six editions of Windows 10 ahead of its Winter 2015 launch. ...
Firefox 38 FINAL released, debuts new tab-based preferences
May 13, 2015
Mozilla has unveiled the latest version of Firefox 38.0 FINAL for desktop, with Firefox for ...
Latest Comments
Polls
Should Optus make a bid for iiNet?

   |   View results
Yes
  43%
 
No
  57%
TOTAL VOTES: 565

Vote