Print 36 comment(s) - last by Nutzo.. on Aug 21 at 2:06 PM

Malware is stubborn and hard to remove

Since July, a new strain of malware has been attacking Android smartphones in China.  Dubbed SMSZombie.A, the malware spreads by wallpaper apps on China's largest apps marketplace, GFan.

The apps come with alluring titles, such as "Android Animated Screensaver: Animated Album I Found When I Fixed My Female Coworker's Computer".  

When the user sets the in-app wallpaper as their selected wallpaper, they receive a prompt requesting to download additional files.  Those files are a malware packaged dubbed "Android System Service".  Once installed, that package request administrative privileges, repeatedly popping up the dialogue until the user accepts.

As with various text message scams in the U.S., sending and receiving messages from premium SMS numbers make the bulk of the profit from the malware.  As carriers receive a cut of the profits from premium SMS messages, some carriers have been unwilling to block abusive premium SMS entities, even if it means their customers are being ripped off.  

The new Android malware is particularly clever as it deletes receipts from premium SMS services, disguising the fees from the user.  Researchers suspect the malware may also be attempting to steal bankcard numbers and money transfer receipt details.

SMS Zombie
The SMSZombie malware acts a malicious Trojan [Image Source: TrustGo]

So far 500,000 Android smartphones in China have been infected by SMSZombie, according to TrustGo, a mobile security firm.

As the actual wallpaper apps contain no direct malware, they are hard for mobile antivirus software to detect.  They also reportedly are resistant to removal.

Android malware is most prevalent in China, where poorly regulated third party applications markets dominate the Android software space.  Such markets are oft rife with pirated and malicious applications [1][2][3].

In the last quarter approximately 34 million Android smartphones shipped to the Chinese market, according Canalys [source].  The biggest player is Samsung Electronics Comp., Ltd. (KSC:005930), who is shipping close to 10 million units a quarter to the world's biggest smartphone market.  Huawei Technologies Comp. (SHE:002502and HTC Corp. (TPE:2498) also command large Android sales in the market.

Source: SMSZombie

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

RE: Yeah, well
By mocyd on 8/20/2012 3:01:39 PM , Rating: 2
That sentence essentially sums up the design flaws in the whole Google/Android conception. After the endless and very silly hysteria about Apple's curated apps store model this just shows what the alternative is.

The same design flaw in the statement you reference exists in every usage model, even Apples.

But this comment shows an even deeper lack of understanding of software as a whole: as long as the user has any type of control over what goes on the device, the user will always be the primary point of attack. Whether it's weak passwords, or UAC style controls (which MS, Apple, and Google all use), ultimately, if the user has control, the user is the weak point. And it's not hard to find a whole lot of them in any ecosystem (admittedly it's harder to find them when your user base is as small as Apples).

While you call this a "flaw" in the Google/Android concept, it's probably one of its biggest assets- acknowledging consumer choice and freedom is why Android is the handset of choice for network providers offering faster speeds across its network and why users are picking Android devices 2-1 over iOS devices.

As a user, I don't care about Apple's market cap or what an investor thinks the value of the company is- I care about device choice and network performance that's faster than my cable modem, as well as the ability to tether to my device for free.

And if I install malware on my phone- it's my fault alone. I'm not going to go blame Google just for some minor talking point on a forum that's ultimately meaningless when Google did me the favor of giving me the full value of choice in my purchase. I treat any software install the same- I research the software regardless of the source.

"What would I do? I'd shut it down and give the money back to the shareholders." -- Michael Dell, after being asked what to do with Apple Computer in 1997

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki