时间:2025-04-26 18:28:08 来源:网络整理编辑:綜合
A new strain of Android malware has infected 25 million devices and modified legitimate apps with a
A new strain of Android malware has infected 25 million devices and modified legitimate apps with a malicious ads module, according to a report by the security company Check Point.
It's believed the malware originated from a Chinese internet company that helps Chinese Android developers publish and promote their apps in foreign markets. The malware was disguised as Google-related updaters and "vending modules," which hid its own app icons and automatically replaced already-installed legitimate apps with its own version without the user knowing. This lead the researchers to name the malware "Agent Smith" because its behavior is similar to the character in the film The Matrixof the same name.
The malware first appeared in popular third-party app store 9Apps and targeted mostly Indian, Pakistani and Bangladeshi users. However, of the 25 million affected devices, 303,000 infections were detected in the US, and 137,000 in the UK.
Apps that were modified include WhatsApp, Opera Mini, Flipkart, as well as software from Lenovo and Swiftkey. The malware detected which apps were installed, patched them with a malicious ads modules, and then re-installed them on the device. For the user, it simply looks like the app is being updated as expected. Once the update is complete, the owner of the malware can then profit from the newly included ads.
Check Point believes the same malware could also be used for more malicious purposes such as credit card theft, with the company's report stating, "due to [the malware's] ability to hide its icon from the launcher and impersonates any popular existing apps on a device, there are endless possibilities for this sort of malware to harm a user's device."
The security firm says they submitted data to Google and law enforcement agencies, and as of publishing no malicious apps remain on the Play Store. Nevertheless, the malware managed to survive for as long as it did because, despite the original vulnerability Agent Smith was based on being patched in Android years ago, developers did not sufficiently update their applications.
Malware like this, "requires attention and action from system developers, device manufacturers, app developers, and users, so that vulnerability fixes are patched, distributed, adopted and installed in time," Check Point says.
TopicsAndroidCybersecurity
The five guys who climbed Australia's highest mountain, in swimwear2025-04-26 18:15
迷幻 !球迷曬C羅“還沒結束”遭CR7否認:沒說過2025-04-26 18:12
廣州隊官網 :傅博擔任技術總監 劉智宇主教練2025-04-26 18:10
武漢三鎮12新援齊亮相 標王 :主要任務是助攻2025-04-26 17:51
Michael Phelps says goodbye to the pool with Olympic gold2025-04-26 17:44
瓜帥 :福登最佳位置是丁丁接班人 他隻需改進一點2025-04-26 17:19
廖力生 :在泰山效力讓人踏實和安心 感到非常榮幸2025-04-26 17:08
消息人士 :C羅會留在曼聯 滕哈格對其態度仍是未知2025-04-26 16:54
There's a big piece of fake chicken stuck to this phone case2025-04-26 16:39
官方:韓國將在6月與巴西 、智利、巴拉圭踢熱身賽2025-04-26 16:38
Michael Phelps says goodbye to the pool with Olympic gold2025-04-26 18:27
平均年齡隻有21歲!廣州隊創中超最年輕球隊紀錄2025-04-26 18:06
曝巴薩今夏無緣引進萊萬 拜仁欲強留他到合同到期2025-04-26 17:44
登貝萊一月起就在聯係巴黎 他想先明確姆巴佩未來2025-04-26 17:20
Uber's $100M settlement over drivers as contractors may not be enough2025-04-26 17:13
本澤馬:世界最佳俱樂部又奪一杯 我們還有其他目標2025-04-26 17:11
意媒 :國米簽迪巴拉已達協議 欲組阿根廷鋒線雙煞2025-04-26 16:32
山東泰山外援克雷桑更新社媒:已經安全抵達中國2025-04-26 16:26
Satisfy your Olympics withdrawals with Nike's latest app2025-04-26 15:54
曼聯舊將:C羅仍是梅羅間的No.1 質疑他的人瘋了2025-04-26 15:51