Posts Tagged ‘Android app’

Kaspersky LabSpecialists in viruses from Kaspersky Lab discovered and described the unusual malicious applications to Android, which for some time have been published in the official store Play Market.

As it turned out, those applications that fall under the definition of viruses that try to compromise Windows-machine by turning the microphone on your PC without your knowledge.

At some point it had to happen – the wiretapping space around Windows-machine is not uncommon for traditional viruses targeting conventional computers. Feature of the next opening specialists Kaspersky is the first time for the penetration of the PC used is Android-application. This application hosted called DroidCleaner, attacked PC through the infamous autorun, placing a special file on the memory card. When you connect your smartphone or tablet PC this file is read and loaded (if the car was not autorun disabled), the virus penetrates the PC includes a microphone for recording and sending recorded audio files to their authors.

The purpose of creating a hybrid virus listener is not completely clear. Of course, in some situations, such as economic or political espionage, a virus might be useful. In other situations, the virus is too broad fronts. Maybe it’s just checking technology before launching a more sophisticated and targeted attack. (more…)

SSL errorsStaff of the two German universities found that 17% Android-SSL apps’ can be exploited to the “man in the middle” attack .

Employees of Leibniz University in Hannover and Philipps University examined some 13 000 applications and more than 1000 of them, they found errors implement SSL protocol.

In the study, researchers found that 17% of all applications that use SSL, contain errors, allowing the attacker to the “man in the middle” attack. The study’s authors said they had successfully managed to get the credentials of services, such as American Express, Diners Club PayPal, Facebook, Twitter, Google, Yahoo, Microsoft Live ID, Box, WordPress, IBM Sametime, and various email services, and bank accounts.

The researchers found that there are problems SSL and mobile anti-virus: “We have managed to build virus signatures in the antivirus application and get it to recognize any application as a virus, and a fully disable antivirus protection.” (more…)