Backdoor Trojans piggyback on popular Android apps, warns Symantec

Symantec has notified the mobile world that a new Android application has been hijacked, and could potentially lead to enormous SMS bills if downloaded. The latest in a series of hacked Android apps, Steamy Window is a mundane but popular screensaver appl

By Abhinav Lal | Published 02 Mar 2011 16:49 IST
Backdoor Trojans piggyback on popular Android apps, warns Symantec
Backdoor Trojans piggyback on popular Android apps, warns Symantec
Symantec has notified the mobile world that a new Android application has been hijacked, and could potentially lead to enormous SMS bills if downloaded. The latest in a series of hacked Android apps, Steamy Window is a mundane but popular screensaver application that now contains malicious code.
 
While the Android Market still has clean versions of these apps, Symantec says hackers are capitalizing on user ignorance and carelessness by uploading the infected applications on third-party app stores instead. Steamy Window was hacked by Chinese cyber criminals, and latched a backdoor Trojan virus onboard called “Android.Pjapps” according to Symantec.
 
Symantec’s Vikram Thakur, a principal security response manager, has warned of what the malicious app can do when installed - install other malicious applications, edit browser bookmarks, silently navigate to web sites and send text messages. He pointed out that sending text messages from infected phones was how the cyber criminals made their money, allowing them to send SMSes to premium rate numbers, for which they get commissions. The Trojan also blocks incoming carrier/operator SMSes, potentially hiding warnings, payment and balance alerts from users.
 
While numerous apps before Steamy Window have received similar treatment by hackers, it is an unpleasant example of how good they’ve gotten at their jobs, apart from being a much needed wake up call to users to download apps intelligently, from trusted sources.
 
[RELATED_ARTICLE]Vikram Thakur also warns that the malicious code that’d been added to Steamy Window is one that can be added very easily to other applications, and, that Symantec expects this trend of compromising legitimate Android apps to continue, and grow.
 
He adds: “If you're hell-bent on using [unauthorized third-party app stores], look at the permissions the app requests when it installs. A [malicious] app will request more permissions than the legitimate version.”
Abhinav Lal

About Me: https://plus.google.com/u/0/118371002657670425415/posts Read More

Tags:
Android Andriod app Trojan Android hack hack hacking malicious malicious code malicious software third-party app store Android Market
Advertisements

Trending Articles

Advertisements

LATEST ARTICLES View All

Advertisements
Apple iPhone 13 (128GB) - Starlight
Apple iPhone 13 (128GB) - Starlight
₹ 71900 | $hotDeals->merchant_name
OnePlus 10 Pro 5G (Volcanic Black, 8GB RAM, 128GB Storage)
OnePlus 10 Pro 5G (Volcanic Black, 8GB RAM, 128GB Storage)
₹ 61999 | $hotDeals->merchant_name
Redmi Note 10T 5G (Metallic Blue, 4GB RAM, 64GB Storage) | Dual 5G | 90Hz Adaptive Refresh Rate | MediaTek Dimensity 700 7nm Processor | 22.5W Charger Included
Redmi Note 10T 5G (Metallic Blue, 4GB RAM, 64GB Storage) | Dual 5G | 90Hz Adaptive Refresh Rate | MediaTek Dimensity 700 7nm Processor | 22.5W Charger Included
₹ 11999 | $hotDeals->merchant_name
realme narzo 50A Prime (Flash Blue, 4GB RAM+64GB Storage) FHD+ Display | 50MP AI Triple Camera (No Charger Variant)
realme narzo 50A Prime (Flash Blue, 4GB RAM+64GB Storage) FHD+ Display | 50MP AI Triple Camera (No Charger Variant)
₹ 11499 | $hotDeals->merchant_name
iQOO 7 5G (Solid Ice Blue, 8GB RAM, 128GB Storage) | 3GB Extended RAM | Upto 12 Months No Cost EMI | 6 Months Free Screen Replacement
iQOO 7 5G (Solid Ice Blue, 8GB RAM, 128GB Storage) | 3GB Extended RAM | Upto 12 Months No Cost EMI | 6 Months Free Screen Replacement
₹ 29990 | $hotDeals->merchant_name