Home > slashdot > New Android Malware Robs Bandwidth For Fake Searches

New Android Malware Robs Bandwidth For Fake Searches

February 17th, 2011 02:51 admin Leave a comment Go to comments


adeelarshad82 writes “We’ve been hearing about various Android malware spreading through the chinese markets. Well here’s another one to look out for, meet ADRD (aka Trojan:Android/Adrd.A) which is expert in sucking your bandwidth. The malware downloads a list of search URLs and then performs those searches at random in the background, which as the screen shots [in the linked article] show leads to excessive data charges. Similar to other Android malwares this too is distributed through wallpapers which are infected repackaged versions of legit wallpapers.” Adds reader Trailrunner7: “Lookout, a mobile security vendor, said it has identified 14 instances of the malware repackaging itself in various wallpaper apps and specifically in the popular game, RoboDefense, made available in alternative application markets. The trojan works by duping an infected app into sending encrypted data containing the device’s IMEI and IMSI to a remote host. HongTouTou then receives a set of search engine target URIs and search keywords to send as queries. It then uses these keywords to emulate search processes, creating searches in the search engine yielding the top results for those keywords and clicking on specific results. To the search engine, the searches appear to be coming from a mobile user using a mobile web browser with User-Agent corresponding to the UCWeb browser.”

Source: New Android Malware Robs Bandwidth For Fake Searches

Related Articles:

  1. Android Trojan Found, Spreading From Chinese App Stores
  2. More Malware-Infected Apps Found In Android Market
  3. Android Malware “Obad” Called Most Sophisticated Yet
  4. Android Malware May Have Infected 5 Million Users
  5. Over 60% of Android Malware Hides In Fake Versions of Popular Apps
blog comments powered by Disqus