El Malware NotCompatible de Android crece a un ritmo de 20.000 infecciones al día

15 Mar

The “NotCompatible” malware, designed to infect Android devices and turn them into unwitting Web proxies, is suddenly showing a sharp uptick in activity, according to mobile security vendor Lookout.

The malware is essentially a simple network proxy, which pretends to be a system update in order to get unwitting users to install it. The idea seems to be gaining access to protected networks through victims’ infected Android devices. It was named for its apparent command-and-control server, at notcompatibleapp.eu.

Last weekend saw the number of detections for NotCompatible rise to 20,000 per day as of last Sunday and Monday, wrote researcher Tim Strazzere, who said that the malware had been largely dormant since it was discovered in May 2012.

But while the initial discovery saw the malware being installed by hacked websites, the latest wave of NotCompatible is being   spread by email spam. The usual subject line is “hot news,” and the infected messages appear to contain links to fake weight-loss   articles.

NotCompatible malware

Credit: Lookout Security
The hacked Web page that can contain the NotCompatible malware.

“Depending on the user’s Android OS Version and browser, they may be prompted about the download. Many stock browsers will   transparently trigger a download to the device /Downloads folder whereas Chrome displays a confirmation dialog,” wrote Strazzere.

Lookout said there is little chance of direct harm to infected devices, and victims must allow NotCompatible to be installed   for it to function, further minimizing the overall threat to the majority of Android users. The best advice for safety is   simply to never allow any .apk whose

Anuncios

Responder

Introduce tus datos o haz clic en un icono para iniciar sesión:

Logo de WordPress.com

Estás comentando usando tu cuenta de WordPress.com. Cerrar sesión / Cambiar )

Imagen de Twitter

Estás comentando usando tu cuenta de Twitter. Cerrar sesión / Cambiar )

Foto de Facebook

Estás comentando usando tu cuenta de Facebook. Cerrar sesión / Cambiar )

Google+ photo

Estás comentando usando tu cuenta de Google+. Cerrar sesión / Cambiar )

Conectando a %s

SerialXP

Información diaria para mentes curiosas y ávidas de conocimientos

A %d blogueros les gusta esto: