djdiggla Posted July 11, 2019 Share Posted July 11, 2019 Heads up to Android users. There's a virus that replaces What'sApp with a malware clone. I'm sure some of yall use that app so wanted to give a heads up. As many as 25 million Android phones have been hit with malware that replaces installed apps like WhatsApp with evil versions that serve up adverts, cybersecurity researchers warned Wednesday.Dubbed Agent Smith, the malware abuses previously-known weaknesses in the Android operating system, making updating to the latest, patched version of Google's operating system a priority, Israeli security company Check Point said.Most victims are based in India, where as many as 15 million were infected. But there are more than 300,000 in the U.S., with another 137,000 in the U.K., making this one of the more severe threats to have hit Google's operating system in recent memory.The malware has spread via a third party app store 9apps.com, which is owned by China’s Alibaba, rather than the official Google Play store. Typically, such non-Google Play attacks focus on developing countries, making the hackers' success in the U.S. and the U.K. more remarkable, Check Point said. Whilst the replaced apps will serve up malicious ads, whoever's behind the hacks could do worse, Check Point warned in a blog. "Due to its ability to hide it’s icon from the launcher and impersonates any popular existing apps on a device, there are endless possibilities for this sort of malware to harm a user’s device," the researchers wrote.They said they’d warned Google and the relevant law enforcement agencies. Google hadn't provided comment at the time of publication.Typically the attack works as following: users download an app from the store - typically photo utility, games or adult themed apps (one called Kiss Game: Touch Her Heart is advertised with a cartoon of a man kissing a scantily clad woman). This app then silently installs the malware, disguised as a legitimate Google updating tool. No icon appears for this on the screen, making it even more surreptitious. Legitimate apps - from WhatsApp to the Opera browser and more - are then replaced with an evil update so they serve the bad ads. The researchers said the ads themselves weren't malicious per se. But in a typical ad fraud scheme, every click on an injected advert will send money back to the hackers, as per a typical pay-per-click system.STORY 1 Quote Link to comment Share on other sites More sharing options...
watzz Posted July 11, 2019 Share Posted July 11, 2019 I don't use it but thanks! Quote Link to comment Share on other sites More sharing options...
Steve Posted July 12, 2019 Share Posted July 12, 2019 Fair play for the warning, however..... The malware has spread via a third party app store 9apps.com, which is owned by China's Alibaba, rather than the official Google Play store. If you're using a third party app store based in China instead of the official Google Play store, you're kinda asking for it. 1 Quote Link to comment Share on other sites More sharing options...
djdiggla Posted July 12, 2019 Author Share Posted July 12, 2019 LOL true that Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.