Slashdot Mirror

← Back to Stories (view on slashdot.org)

SMS-Controlled Malware Hijacking Android Phones

Posted by samzenpus on from the Taking-over dept.

wiredmikey writes "Security researchers have discovered new Android malware controlled via SMS that can do a number of things on the compromised device including recording calls and surrounding noise. Called TigerBot, the recently discovered malware was found circulating in the wild via non-official Android channels. Based on the code examination, the researchers from NQ Mobile, alongside researchers at North Carolina State University said that TigerBot can record sounds in the immediate area of the device, as well as calls themselves. It also has the ability to alter network settings, report its current GPS coordinates, capture and upload images, kill other processes, and reboot the phone. TigerBot will hide itself on a compromised device by forgoing an icon on the home screen, and by masking itself with a legit application name such as Flash or System. Once installed and active, it will register a receiver with a high priority to listen to the intent with action 'android.provider.Telephony.SMS_RECEIVED.'"

2 of 94 comments (clear)

  1. Not News by girlintraining · · Score: 5, Insightful

    Downloading things from backwater websites has a higher risk of malware being present than downloading from reputable sources. ...That's some fine detective work there, Lou.

    More seriously; It shouldn't come as any surprise that given how valuable your location data and personal information is, and how much of that is stored on a cell phone, and how most companies have declared themselves to have absolute rights to it (go ahead, try and stop us! *evil overlord laugh*), it shouldn't be surprising that other people (legitimately or otherwise) are hopping on the "All Your Privacy Are Belong To Us" gravy train.

    So people will be all like "Oh noes! Someone wrote an evil bot!" ... Of course, they'll forget that the malware that the telecos have loaded on your phone makes that look positively amateur.

    --
    #fuckbeta #iamslashdot #dicemustdie
  2. Missing key information by Scutter · · Score: 5, Insightful

    This is not the first Android malware reported, and the story is always missing three key pieces of information:

    1) What applications (or sites) were hosting the malware so that we can check to see if we have those apps.

    2) How to tell if you are infected (and saying "it will register a receiver with a high priority to listen to the intent with action 'android.provider.Telephony.SMS_RECEIVED" doesn't really explain anything, especially to the layperson).

    3) What to do about it if you are infected.

    This story is no different

    --

    "Tell me doctor, with all of your defenses, are there any provisions for an attack by killer bees?"