Fake 'The Roar of the Pharaoh' Android app latest Trojan scam
- 30 March, 2012 08:22
It may look like an app for a Chinese game called "The Roar of the Pharaoh," but it's actually just another fake Android app that's really a malware Trojan in disguise, according to security researchers warning about it today.
Writing in a blog, Sophos security researcher Chester Wisniewski calls it a "malicious application" that "gathers sensitive information" about the Android device it lands on, collecting personal information and technical details, including phone number, and "sends it off to the malware's authors."
IN THE NEWS: Report cites US, Canada as malware attack focus
"Like many other mobile Trojans, this one sends SMS messages to premium rate SMS numbers and is capable of reading your SMSs as well," Wisniewski says in his blog.
He points out that SMS scams work because "the mobile phone companies provide the payment processing and the bad guys have their money and are long gone before you ever receive the phone bill with the fraudulent charges."
Sophos has identified the Android Trojan as Andr/Stiniter-A, and says it doesn't ask for specific permissions during installation. "The Roar of the Pharaoh" is a legitimate Chinese game , though the Android app for it is not believed to be distributed on Google's site called Google Play (formerly Android Marketplace).
Michael Sutton, vice president of security research at cloud-based security provider Zscaler, said the fake "The Roar of the Pharaoh" app for Android reflects the shift of malware authors to target the Android platform, whether smartphones or tablets. Fake game apps that are really Trojans are increasing and "this is a typical scam for Android now," he says.
Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security.
Read more about wide area network in Network World's Wide Area Network section.
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
Five trends affecting legal CIOs
CIO Roundtable: The changing face of security
Bitcoin malware count soars as cryptocurrency value climbs
Bouncing Back From CIO Unemployment
Union slams latest fibre-to-premise trial in Tasmania
Case Study: The True Value of Conference Calling
In a study by the University of Bradford study, we look at the benefits of a strong telepresence and how organisations can become faster, more focused and environmentally responsible. Click to download!
Cloud-Based Mobile Device Security Streamlines Data Protection
Read this white paper to learn why cloud-based security offers superior protection that meets today’s requirements for identifying and preventing access to malicious sites and applications while reducing management complexity and IT staff time and effort. This whitepaper discusses: • Increased use of mobile devices and the associated risks • Ways to address security challenges • Benefits of cloud-based anti-malware solutions
Managing your User Environment
Business users are accessing more data, across more devices than ever before. For IT departments, this means an increasing number of problems. This whitepaper details a number of strategies to help prevent challenges in cost, efficiency and security, now and into the future.