Written by Researchers at North Carolina State University have revealed a new Android malware called DroidKungFu, which has started to circulate which is able to avoid detection by most mobile anti-virus software, affecting all versions of Android up to and including Froyo (Android 2.2).
The two researchers, assistant professor Xuxian Jiang and student Yajin Zhou, identified two infected applications which were found to be in circulation on eight third-party app stores and forums based out of China. Although infected apps have only been found in Asia, audits of other applications marketplaces have only just begun.
DroidKungFu affects Android handsets in two ways; firstly it is able to take advantage of a backdoor in the Android software to load a backdoor on a device, allowing attackers to steal sensitive information on the device. Secondly, the handset could turned into a bot, allowing the device to be used to perform actions without a user’s permission.
The malware isn’t the first to be able to take advantage of the exploits, other pieces of software like DroidDream have used the sam techniques. DroidKungFu differentiates itself by successfully avoiding detection by some of the most popular Android anti-virus apps.
The NC State article only states that the malware was tested on “two leading mobile security apps”, avoiding naming either one.
Whilst newer versions of Android limit what DroidKungFu can control, they aren’t entirely secure:
The security patches severely limit DroidKungFu, but it is still able to collect some user data – such as your mobile phone device ID number – and send them to a remote site.
Whilst anti-virus vendors work out the best way to deal with the malware, users will be able to protect themselves by downloading apps from trusted app stores and checking the permissions that apps request. This will lessen the risk but will not completely protect users.
Terrific article, lots of really good data. I want to display my pal and get all of them the things they think.
I think this is among the most important information for me. And i’m glad reading your article. But should remark on few general things, The site style is wonderful, the articles is really nice : D. Good job, cheers
Admirable blog! I’ll almost certainly be referencing some of this facts in my next speech. I would appreciate it should you visited my blog at
Very useful post. Thanks for taking the time to share it with us.
My English communication isn’t so good butprobably I understand everything. Thank u so well for that awesome blog message. I jolly be glad reading it. I think you happen to be a superb author. At this time added your blog to my favorites and will appear back again to ur web web page. Hold up that magic work. I residence to see much more soon.
I don’t even know how I got here, but I thought this post was interesting. Cheers!
Outstanding report not to mention very easy towards realize explanation. How do I just do receiving permission towards submit element of this content with my future news letter? Giving suitable consumer credit rating back to you typically the article author not to mention hyperlink in the web site would not be considered trouble.
Hi there! Would you mind if I share your blog with my myspace group? There’s a lot of folks that I think would really appreciate your content. Please let me know. Many thanks
Ya You Can Share it