A new form of malicious software that threatens the security of operating system devices Android was recently identified with the name for Android/Samsapo.A.
This threat has been identified by ESET's solutions, and it is particularly interesting that malware spreads using techniques similar to those used by worms for their attacks on computers.
More specifically, the main feature of any worm that attacks computers is the use of an automatic mechanism to spread and find new victims. In their advanced form, worms invade networks and infect computers, while in their simplest form, they spread as email attachments, through removable media or via URL links in email, IM or Facebook messages as well as other social media.
Το Αndroid/Samsapo.A χρησιμοποιεί την ίδια τακτική, με ένα μήνυμα SMS που γράφει «Это твои фото?» (το οποίο στα ρώσικα σημαίνει «Είναι αυτή η φωτογραφία σου?») και ένα link που οδηγεί στο κακόβουλο πακέτο APK προς όλες τις επαφές του χρήστη. Μόλις το Αndroid/Samsapo.A παραβιάσει τη συσκευή Αndroid, μπορεί να κατεβάσει επιπρόσθετα κακόβουλα archives από συγκεκριμένα URL, να ανεβάσει προσωπικές information, including phone book numbers and messages, to a remote server, to register the phone number in a multimedia information service (premium-rate) and to block phone calls.
As noted in ESET's report, the attacks have been recorded mostly on Russia. To avoid such threats, Android device owners should be careful about installing apps from unknown sources, be on the lookout for social phishing tricks, and use an up-to-date anti-malware solution on their devices.
Source: naftemporiki.gr
