Mobile security: New malware targeting Android
- Android Smartphones are now targeted by a new malware, called Geinimi, which is able to retrieve personal information. This malware seems to display characteristics close to those identified with botnets. Geinimi communicates with a C&C server which enables it to install or remove software from a distance. User agreement still remains necessary to complete these actions, however, if not warned or trained enough, the latter may accept quite trustingly. In addition, the Smartphone's location as well as several identifiers (IMEI, SIM), and even the list of installed applications, are sent every five minutes to the server. This malware can contact about ten domains to perform these exchanges. Chinese speaking users are especially targeted.
- Research performed by Lookout shows that the malware is propagated through legitimate Android games, both those that are for free and those that cost money. However, the concerned applications may have been downloaded from third-party websites proposing products whose security has not yet been tested.
- It has not yet been proved that Geinimi’s intention is to make money or to retrieve substantial amounts of data.
- Considering the increasing number of Smartphone users, these devices could increasingly become the target of attacks which used to affect personal computers. Most of these Smartphones are connected to the 3G network and growing more and more powerful. One cannot but think that malicious organisations will try to enrol them in zombie networks.
- A recent study conducted by the security laboratory, PandaLabs, states that 34% of the existing malware were created in 2010. It also indicates that targets are also evolving and even Mac users, who used to be more or less spared, are increasingly threatened (this might be explained by the growth of Apple's market shares).
- In addition, BitDefender’s report on the second semester of 2010 shows that France was the country the most targeted by malware, more than both the United States and China.
Top 10 countries affected by malware
Source : H2 2010 E-Threat Landscape Report -MALWARE, SPAM AND PHISHING TRENDS
Source : H2 2010 E-Threat Landscape Report -MALWARE, SPAM AND PHISHING TRENDS