In early November, the company’s security analysts of Doctor Web found particularly malicious worm that deals with sending bulk SMS messages containing malicious links from malware pests.
the
When you run the dangerous bot can not only send short messages, but also remove the installed applications and files, steal confidential information, attack and perform other malicious actions on an infected machine. It is registered in the virus database under the name Android.Wormle.1.origin . When a user installs unaware of it, the bot creates a shortcut on the main screen and acts as a – seemingly innocent – a system service com.driver.system. In fact, combined with the “server command and control” (C & amp; C) and is waiting for further guidance from hackers. The worm can be controlled not only by said server, but also via Google Cloud Messaging, which is a service that allows developers to communicate with their applications to target devices through active Google account.
Hackers control bot can harm by doing eg. such actions as adding numbers to the blacklist, transmit Server C & amp; C information on all incoming sms-es and calls, launch voice recorder, delete contacts (shown by the Special dialog box), delete files and folders, or even perform a DDoS attack on a particular website. According to Doctor Web, as has been previously infected with approx. 14,000 units worldwide, with over 12,000 in Russia.
See also:
No comments:
Post a Comment