Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Another SMS Trojan Appears on Android Phones

When the trojan is installed, it'll ask you to access Android's messaging system

Kaspersky Labs first announced its detection of what appeared to be the first of several SMS Trojans on Google's Android operating system on August 9th. The application released in Russian markets outside of Google's Android Market, was disguised as a media player. Once installed, the code would send 3 premium SMS messages, effectively transferring the US equivalent of ~$18 from the user to the recipient company.

On Wednesday, Kaspersky Labs expert Denis Maslennikov revealed a new Trojan very similar to the first. Again targeting Russian users, this app is disguised as a pornographic media player. What is interesting is not the recurrence of the premium SMS dialing (sending an SMS to a pay service, such as donation codes for the Red Cross, or ringtone services advertised on Television ), but the method in which installing the app is brought to users attention.

The authors of this particular trojan use a tactic known as search engine poisoning to spread the malware. That is, they crafted Websites specifically to appear near the top of search results for certain search queries. By placing malicious websites at the top of search results, mobile users who are by nature looking for fast easy results are more likely to click through without due diligence of ensuring the top hits are safe. This has been a common theme of PC-based malware and is now a lucrative trend in the mobile domain for an increasingly popular platform.

When the trojan is installed, it'll ask you to access Android's messaging system. If you deny it, the malicious portion of the code will not be allowed to function. It's a lesson in both trusting your application sources, and paying attention to mandatory security prompts for sure.

Remember that once you have given permission to an application, it rarely if ever will need to request permission again. The simple media browser in this case can wantonly send SMS messages whenever it is active, and you will be none the wiser, till you see the bill.

More from PCWorld's GeekTech blog...

* Palm Releases WebOS 2 Details

* Ika-tako Virus Replaces Your Files With Octopus Photos

* Android Game Is a Spy App in Disguise

Follow GeekTech on: Facebook | Twitter | Digg | RSS

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Facebook, Google, Kasperksy Labs, Kaspersky, Kaspersky Lab, Octopus, Palm
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: Google, Google Android, kaspersky lab, malware, security
Latest Blog Posts
Whitepapers
  • Restore control, Reinforce security & Reduce Cost
    Uncontrolled print environments and practices present a serious risk to the profit and security of your organisation. IT is under pressure to protect sensitive information, secure devices, and improve the way they manage the entire fleet. To gain better control, your organisation needs to implement plans that meet industry regulations while also increasing productivity, lowering costs, and providing users with more flexible imaging and printing solutions. Read more.
    Learn more »
  • CSO Security Buyers Guide 2011
    Welcome to the 2011 /2012 CSO Security Buyers Guide CSO is keeping security professionals ahead of the evolving threats and challenges to their businesses. This resource for security professionals assists you in finding leading IT security vendors by their products and solutions. Happy Browsing! The 2011 CSO Buyers Guide team
    Learn more »
  • Stella Travel Services embarks on a strategic refresh of print operations
    Stella Travel Services embraces Managed Print Services (MPS) to deliver savings, centralise and consolidate print operations in order to gain control of print costs and streamline IT support. Read more.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments