Slashdot Mirror

← Back to Stories (view on slashdot.org)

Malware Posing As Official Google Play Store Evades Most Security Checks

Posted by timothy on from the ok-ok-using-ios-doesn't-count dept.

DavidGilbert99 (2607235) writes Mobile malware on Android is nothing new, but now security company FireEye has discovered in the Google Play store a sophisticated piece of malware which is posing as....the official Google Play store. Using the same icon but a different name, the malware is not being detected by the vast majority of security vendors, is difficult to uninstall and steals your messages, security certificates and banking details.

6 of 100 comments (clear)

  1. Link? by devjoe · · Score: 4, Informative

    Not sure how this brief blurb with no link got posted, but here is a link to an actual story.

  2. Re:Uh... by chrisv · · Score: 3, Informative

    From the original submission: http://www.ibtimes.co.uk/malwa...

    --

    Dogma: Dead (mostly because your Karma ran it over)

  3. Exposes a defect in Android by tepples · · Score: 4, Informative
    According to the article (clickable link for the lazy):
    • The app is titled "googl app stoy". To start with, that's a trademark infringement.
    • If the user can install an app that the same user cannot uninstall, the mechanism allowing the app to do this is a defect in Android.
  4. Re:Uh... by Little_Professor · · Score: 4, Informative

    Here is the link to the original blog posting by the security company FireEye http://www.fireeye.com/blog/technical/2014/06/what-are-you-doing-dsencrypt-malware.html

  5. Re:Link? by DavidGilbert99 · · Score: 5, Informative

    Here is the link: http://www.ibtimes.co.uk/malwa... I submitted it to Slashdot but it failed to publish it.

  6. Re:Umm.. by BasilBrush · · Score: 1, Informative

    TFA (Which the editor neglected to post) says it came from the official Google Play store.

    http://www.ibtimes.co.uk/malwa...