Monday, September 9, 2013

Mobile Trojan Obad.a - Exploiting Android OS Vulnerability

Google Play Fake Store inviting users to download the game plus the piece of malware.

According to Kaspersky Lab, Obad.a is so far the most sophisticated mobile Trojan to date exploiting Android Operating System (OS) vulnerability. Twelve (12) versions of Backdoor.AndroidOS.Obad.a had been discovered and all have the same function set and high level of code obfuscation.

They used Android OS vulnerability that allows to gain Device Administrator rights and more complicated to delete. This Trojan is mostly found in CIS countries, more than 83% on Russia and detected on mobile devices in Ukraine, Belarus, Uzbekistan and Kazakhstan.

4 ways of Backdoor.AndroidOS.Obad.a Distribution

1. Mobile Botnet
2. Traditional SMS Spam
3. Google Play Fake Store
4. Redirection from cracked sites

The loophole was reported on Google and fixed in Android 4.3 but only few smartphones and tablets uses this version and earlier version of the platform is still at risk.

Kaspersky Internet Security (KIS) for Android 11.1.4 can delete Backdoor.AndroidOS.Obad.a from any version of Android.

Be sure to have mobile anti-virus in your Android phone/tablet and updated operating system to protect your data and privacy against cybercriminals at all times.

Kaspersky News
Securelist Obad.a Trojan Analysis

Related Articles:
+ Kaspersky Launches Internet Security for Android Phones and Tablets
Kaspersky/Trend Micro got a "PERFECT" Score on Antivirus Test for 2013
LG Optimus L4 II - World's First 3G Triple SIM Capable Android Smartphone
DOST launches MOSES tablet for Pilot Testing - Dual SIM and TV Capable
Surgical iKNIFE - Detects Cancer Cells Tissue during Surgery
+ PAGASA to Enhance Weather Forecasting using IBM Blue Gene Supercomputer
NASA's Voyager 1 - First Man-Made Object to Reach the Edge of Solar System
DOST School Dengue Monitoring Alert System - Now Online
DOST-UP Monorail AGT System - First in the Philippines
New PAGASA Rain Color Coded Warning Signal Alert System

No comments:

Post a Comment

Related Posts Plugin for WordPress, Blogger...