Mobile security researchers from Zimperium warn the public of the new dangerous Android malware faking as System Update. Once downloaded, it can remotely control fully the Android device.
A warning came from the security researchers about the new dangerous Android malware faking as System Update. The malware reportedly can take full control over the victim’s device & steal users’ data, says Zack Whittaker of TechCrunch.
Mobile security researchers from Zimperium, who discovered the malicious app said that it is dangerous once the app is installed. As the malware will communicate with its Firebase server, and eventually can remotely control the device.
Dangerous Android malware faking as System Update
The malware was found in an app called “System Update” that can be downloaded and installed. This app is available outside of Google Play, Android devices’ app store. Once installed the app hides and silently pull-out data from the victim’s device to its servers.
The malware can manipulate and steal information from users. It can rob users’ messages, contacts, device details, browser bookmarks, search history, record calls, and ambient sound from the microphone. It can even take pictures using the phone’s cameras without the user’s knowledge. The malware also can trace the victim’s location, and take out document files and those in the clipboard.
The malware tries to hide from the victim to evade its way from being captured. It minimizes data it uses by making use of thumbnails to the attacker’s servers instead of the full image. The malware also seizes the most updated data, which includes location and pictures.
Growing sophistication of the threat
Zimperium’s CEO Shridhar Mittal said that the malware was part of the targeted attack. It is one of the most sophisticated malware made in a long time with much effort, Mitt al added. Mittal believes that there are several other apps like this out there victimizing as many users. Thus, his company is working hard to capture them as soon as possible.
Tricking users to install malicious apps has been widely used by hackers to victimize as many as they can. Android device makers are warning the public not to just install any apps especially that outside of the app store. However, users of older devices face greater risk. Their outdated device may not be compatible with some latest apps prompting users to search outside of the app store.
Mittal assures the public that the malicious app was never included in Google Play. Google has captured some malicious apps that managed to sneak through its filter. The company is constantly updating its security measures to keep up with the growing threat from malware attacks.
Recently, there has been a growing number of RATs on mobile devices coming out. And their sophistication is keeping up with the pace of technology development. Perhaps perpetrators have realized that mobile devices have as much data on them and are less protected, Mittal further said.
We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.