ESET researchers have discovered a new and dangerous application (Trojan) that targets devices Android προχωρώντας σε λήψη και εγκατάσταση κακόβουλου λογισμικού. Το trojan, που εντοπίστηκε από το security software by ESET as Android / TrojanDownloader.Agent.JI, spreads via compromised websites and appears as a Flash Player update.
This is one of the threats to Android that will be presented by ESET in Mobile World Congress.
Once installed, the malware creates on Android a fake service for energy saving της μπαταρίας παρακινώντας το θύμα να της δώσει πρόσβαση στις λειτουργίες του Android Accessibility. Αν ο user give permission in the possibilities "Monitor your actions», who are "Retrieve window content» and "Turn on Explore by touch» the attacker can imitate the actions of the user by displaying what he wants on the screen.
« In cases we investigated, this trojan was created to download another trojan which was designed to earmark money from bank accounts. However, only a small change to the code would mean the infection with the user spyware ή ransomware» warns Lukáš Štefanko, Malware Researcher of ESET, its head analysiss.
H βασική ένδειξη ότι μια συσκευή έχει μολυνθεί με κακόβουλο λογισμικό αποτελεί η παρουσία της επιλογής «Saving Battery» μεταξύ των υπηρεσιών στο μενού Accessibility. Σε μια τέτοια περίπτωση, ο χρήστης πρέπει είτε να χρησιμοποιήσει μια αξιόπιστη εφαρμογή ασφάλειας για κινητά, όπως το ESET Mobile Security & Antivirus για να αφαιρέσει την απειλή, είτε να απεγκαταστήσει την εφαρμογή πηγαίνοντας στο Ρυθμίσεις -> Διαχείριση εφαρμογών -> Flash-Player.
In case the user has been deceived by granting the device management rights to the application, it is necessary to disable the administrator rights first, by going to Settings -> Security -> Flash-Player.
"Unfortunately, uninstall it downloader it does not remove the malicious applications it may have already installed. As is the case with downloader, the best way to clean the device is to use a mobile security solution » recommends Lukáš Štefanko.
ESET specialists have prepared a number of basic tips for preventing malware attacking mobile phones:
- Download applications or updates only from a trusted source - in the case of an Adobe Flash Player update, the only secure part is the official Adobe site. Always check the URL in your browser
- Pay attention to the access and rights that your applications require.
- Use a reliable Mobile Security solution.
Those interested can find more information about it dangerous downloader or for preventative technology from ESET. ESET specialists will be at this year's Mobile World Congress offering information on mobile security.