New Windows malware can enter your Android device, affecting Korea for now

by Justin Herrick on
tagged , , ,

android-virus

Computer security giant Symantec has found a new piece of malware that targets Android devices through a Windows computer that have been infected. The malware goes by “Trojan.Droidpak” and uses ADB as its way of entry. An app will appear like the Google Play Store; however, it is called the “Google App Store.” After starting the malicious app, it will search for Korean banking apps. After that, it will prompt the user to install malicious ones over the originals. Also, it can intercept emails so users will miss fraud protection notices. It is unknown if this is widespread or just limited to Korea at this time.

As usual, you should be smart and only connect your Android device to a computer that you trust. Disabling “USB Debugging” and enabling “Verify apps” is likely your best choice. Hit the source link to see Symantec’s detailed breakdown.

Source: Symantec
Via: XDA

Cisco security report finds 99% of mobile malware targeted at Android devices

by Jared Peters on
tagged , ,

Android Security

A new security report published by Cisco has found that 99% of all mobile malware attacks are targeted at Android devices. On top of that, the report says Android suffered 91% of all Java-based web exploits and 71% of all overall web-based exploits. Ouch. This is compared to Cisco finding that Apple’s iOS only encountered 17% of web exploits.

Eric Schmidt has publicly claimed that Android is more secure than iOS, but despite all of Android’s jumps in security and privacy over the past few years, that’s still not quite true. Obviously this doesn’t mean all Android devices are infested pits of malware, but just that you’re more likely to encounter malware attacks on an Android device.

You can check out the full security report below.

source: Cisco

via: TechnoBuffalo

Recent Google report suggests Android malware at a minimum on Google Play enabled devices

by Harrison Kaminsky on
tagged , , , ,

Google Defense

One of the main complaints Apple fanboys will make about Android is that it’s more susceptible to malware, and thereby a more risky choice for a phone, for obvious security reasons.

Google is now making an effort to quell these false claims, and recently released some graphics showing how hard it is to actually have malware damage your device and infiltrate your secure information. Note that their numbers only include devices that have Google Play Services— many phones without Google Play, such as those from China and Russia, are more at risk for malware.

Google’s Android Security chief Adrian Ludwig says that there are many layers of Android security constantly at work, and because of this, only .001% of all malware is even able to attempt to evade security, let alone actually get through.

The numbers get lower and lower as you pass through the multiple layers, as you can see from the graphic above.

This is not to say you should always be careful, especially when sideloading applicatoins, or if you have an untrusted app store on your device, which are the most common ways to get any type of malware on your device.

Source: PhoneArena

Android devices receive 79 percent of malware attacks

by Aditya Thawardas on
tagged

Android_Malware_01While good things come out of Android being the most used mobile operating system around, bad things also come. Like malware. A new survey by the U.S. Department of Homeland security reveals that the majority of malware targeting operating systems in 2012 were intended for Android. An incredible 79% of all smartphone malware last year was meant for Android users, followed by 17% for Symbian phones, 0.7% for iOS users, and 0.3% for Windows Phone.

In a memo, the DHS and FBI say it is because so many Android users continue to run older versions of Android, making their devices open to a number of security vulnerabilities. Google chose not to comment.

Source: All Things D

Bluebox Security releases app to check if your phone has been patched or not from Android security exploit

by Roy Alugbue on
tagged , , ,

Bluebox_Patch_Check

 

We told you about a recent observation where 99% of all Android devices out there are vulnerable to major security threats, so it should come as no surprise that there is now a way to check and see if you have an affected device. Bluebox Security recently unveiled its newest app to allow device owners to see if they have received the coveted security patch or not. Additionally, this app will check if your system settings allow non-Google Market application installs and if any installed application on your device is trying to maliciously take advantage of the security flaw.

Of course there are some phones out there that are on their way to being fixed, but for the rest of you out there, it may be a good idea to grab the app ASAP and ensure your device is safe and secure.

 

Bluebox_Security

Play Store download link

 

source: Phone Arena

Wireless carriers called on lack of security updates for Android devices

by Jared Peters on
tagged , , , , ,

android-security

Mobile security is a big deal on Android devices. While it’s debatable if malware is as big of a problem on Android as security analysts say it is, it’s still very important to keep your devices protected, just in case. Usually, Google does an excellent job of patching most vulnerabilities in their software, the problem is that carriers take way, way too long to get those security patches onto consumer handsets. Activist Chris Soghoian, known for his work with consumer security and privacy, has recently called out wireless carriers on their poor practices with updating these devices.

He’s saying what we’ve all been thinking, but he definitely brings to light some of the less thought about problems of slow updates. Most people complain about being stuck on old software because it’s slower or lacks cooler features, but that outdated software also lacks the updated protection that current software would provide. The antivirus on your computer wouldn’t do much good if it was looking for malware from 2010, would it? He also talks about the stock Android browser, which is one of the more popular browsers simply because it’s preloaded on the device. Unlike Firefox, Chrome, or any other browser you can download from the Play Store, the stock browser lacks constant updates and new malware protection like updateable apps have.

It’s definitely a good read, and definitely a situation that needs to change. Read on past the source to see what Soghoian has to say.

source: Threat Post

McAfee revamps mobile security app with new App Lock feature

by Jared Peters on
tagged , , ,



 

McAfee is one of the more popular antivirus protections available to PC users, and with the malware on Android devices, they’ve stepped in to provide their trusted protection on smartphones and tablets, too. Recently, McAfee updated their Android application with a refreshed user interface and an innovative new App Lock feature. McAfee claims that since apps like Twitter and Gmail don’t require a password each time you open the app, it’s a possible security threat on your device. App Lock protects against this threat by requiring a pin number each time you want to use one of these applications, protecting you from someone digging through your phone for personal information or even just some nosy friends. This feature can also be used to protect children from having access to certain apps on your device, like the browser or your banking app.

McAfee offers a free trial of the app on Google Play, and offers the paid version at $29.99. Hit the break for the press release and download links. » Read the rest

Microsoft tries to drum up trouble for Android with provocative Tweet

by Alexon Enfiedjian on
tagged , , ,

It’s no secret that competition between the major phone platforms (Android, IOS, and Windows Phone) is pretty stiff, with each company doing whatever it can to get a leg up on the competition. Things can get pretty ugly sometimes, with competitors trashing one another and tarnishing each other’s reputation in whatever way they can. Tonight Microsoft joined the fire-fight with a tweet from their Windows Phone twitter account. In it they are calling for their followers to send tweets telling the world about their worst malware story while using an Android phone. These tweets should also include the hashtag #DroidRage. Something tells me that the very vocal Android community won’t take this sitting down and will turn Microsoft’s provoking tweet on its head. After all…when you think of viruses and malware, you tend to think of Microsoft products. Let’s see how this unfolds. If you want to reply to the tweet yourself, check it out at the source link below.

Source: Windows Phone Twitter

Google to fix “smishing” vulnerability recently discovered by NCSU researchers

by Jared Peters on
tagged ,

Smishing, or SMS-phishing, is an old scamming technique that baits users into putting in personal information on fake websites by sending bogus text messages. It hasn’t been too common in the past few years, but some researchers at NC State University have found a vulnerability affecting several Android versions that could make phishing popular again. The exploit identified affects Gingerbread, Ice Cream Sandwich, and even Jelly Bean. » Read the rest

Security Features a big part of Android 4.2

by Sean Stewart on
tagged , , ,

Amongst the many other additions that will be part of Android 4.2, it looks like keeping your device secure will be a priority as well. I know we don’t like the idea of malware on our Android devices, but the fact is, it’s out there. Google is looking to combat that in 4.2 by offering the option of scanning an application before it’s fully installed. Once the app is scanned, if it finds something suspicious within the app, it’ll then prompt you and inform you as such and give you the option to continue. Additionally, the scanner will block the installation completely if the fingerprint matches existing malware.

Google isn’t forcing this however. This is an opt-in type of setup and option. I think it’s a good start by Google offering this option. Our devices these days are worth quite a bit of change and hold some valuable information on them, so keeping everything on the up and up is definitely on the top of my list when talking about my mobile device.

 

source: Android Central

12345