An unusual activity on a malicious script on an infected website that has been compromised to Android users has been discovered by computer experts who point out that this script is normally trigger a download Exploit Flash in order to attack Windows users.
However, according to analysts at Kaspersky Lab, this malware has changed and now can know what kind of device they are using their victims and look for those with previous versions to Android 4.
As noted in its report, “for cybercriminals infect Android devices is much more complicated than infecting Windows computers. The Windows operating system, along with a lot of applications, contains vulnerabilities that allow malicious code to run without user interaction. This does not happen in the operating system Android, for any application that is to be installed requires confirmation by the user, “although as has been discovered,” vulnerabilities in the operating system Android prompted this malware execute. “
the script contains a set of instructions to be executed in the browser, embedded in the code of the infected site. The first script was discovered on Android devices with two other suspects scripts ancient and later were discovered operating system.
“The first of them was able to send a text message to any phone number, while the other creating a malicious file on the SD card attacked device. This turned out to be a Trojan malware able to intercept and send text messages. In fact, both scripts were able to take action regardless of the user: just enough that an infected web page visited “
This was possible because cybercriminals used exploits for numerous vulnerabilities in the Android 4.1 version.. previous xy – CVE-2012-6636, CVE-2013-4710 and CVE-2014-1939-. Although Google’s patched between 2012 and 2014, there is still risk. Due to the characteristics of Android, many device manufacturers launched later security updates and other launch came not because some models have become obsolete.
“The techniques used are not new. Many providers of Android devices should take into account the fact that proof of concept inevitably led to the emergence of exploits “armed”. Users of these devices must be protected with security updates, even when the devices are left to market “, said Victor Chebyshev, a security expert at Kaspersky Lab.
To protect against such attacks, we recommend following these tips:.
- Keeping the software on your device up to date and allow automatic updates
- Restrict the installation of applications from alternative sources to Google Play, especially if it is to manage multiple devices connected to the same corporate network.
- Use a security solution quality.
No comments:
Post a Comment