时间:2025-02-28 20:35:55 来源:网络整理编辑:綜合
A new strain of Android malware has infected 25 million devices and modified legitimate apps with a
A new strain of Android malware has infected 25 million devices and modified legitimate apps with a malicious ads module, according to a report by the security company Check Point.
It's believed the malware originated from a Chinese internet company that helps Chinese Android developers publish and promote their apps in foreign markets. The malware was disguised as Google-related updaters and "vending modules," which hid its own app icons and automatically replaced already-installed legitimate apps with its own version without the user knowing. This lead the researchers to name the malware "Agent Smith" because its behavior is similar to the character in the film The Matrixof the same name.
The malware first appeared in popular third-party app store 9Apps and targeted mostly Indian, Pakistani and Bangladeshi users. However, of the 25 million affected devices, 303,000 infections were detected in the US, and 137,000 in the UK.
Apps that were modified include WhatsApp, Opera Mini, Flipkart, as well as software from Lenovo and Swiftkey. The malware detected which apps were installed, patched them with a malicious ads modules, and then re-installed them on the device. For the user, it simply looks like the app is being updated as expected. Once the update is complete, the owner of the malware can then profit from the newly included ads.
Check Point believes the same malware could also be used for more malicious purposes such as credit card theft, with the company's report stating, "due to [the malware's] ability to hide its icon from the launcher and impersonates any popular existing apps on a device, there are endless possibilities for this sort of malware to harm a user's device."
The security firm says they submitted data to Google and law enforcement agencies, and as of publishing no malicious apps remain on the Play Store. Nevertheless, the malware managed to survive for as long as it did because, despite the original vulnerability Agent Smith was based on being patched in Android years ago, developers did not sufficiently update their applications.
Malware like this, "requires attention and action from system developers, device manufacturers, app developers, and users, so that vulnerability fixes are patched, distributed, adopted and installed in time," Check Point says.
TopicsAndroidCybersecurity
Chinese gymnastics team horrifies crowd with human jump rope2025-02-28 20:32
Bitcoin and other cryptocurrencies are on a downward spiral. Why?2025-02-28 20:25
Google warns of 'hermit spyware' infecting Android and iOS devices2025-02-28 19:52
How can men help dismantle misogyny and violence? This book will tell you how.2025-02-28 19:32
Nate Parker is finally thinking about the woman who accused him of rape2025-02-28 19:26
Report: How Facebook is getting your private data from hospitals, according to The Markup2025-02-28 18:46
Wordle today: See July 5 Wordle hints, answer2025-02-28 18:45
TikTok trend reminds people to be kinder to themselves2025-02-28 18:42
Researchers create temporary tattoos you can use to control your devices2025-02-28 18:29
WhatsApp rolls out emoji reactions2025-02-28 17:55
Photos show the Blue Cut fire blazing a path of destruction in California2025-02-28 20:28
Airbnb horror stories are taking over Twitter2025-02-28 20:24
Bitcoin and other cryptocurrencies are on a downward spiral. Why?2025-02-28 20:03
Wordle today: See July 5 Wordle hints, answer2025-02-28 19:56
Two astronauts just installed a new parking spot on the International Space Station2025-02-28 19:51
'Downton Abbey: A New Era' review: Pure Hollywood fantasy and happy endings2025-02-28 19:21
'Stranger Things' fans: Call the Surfer Boy Pizza number for a fun surprise2025-02-28 19:17
Most streamed TV shows of the week prove the Force is strong with 'Obi2025-02-28 18:51
Fiji wins first2025-02-28 18:13
Stunning fat bear wakes up from hibernation and is still huge2025-02-28 17:53
