Last week it Denmark and possibly other countries SMS messages circulated stating that the recipient can view an MMS message, but in reality it is Android malware. That leaves the Danish security firm CSIS said in a analysis.
The link in the text message pointing to a website where the file mms.apk offered. The Android app requires administrator privileges, and then installs Tor on your device. Via Tor is made with a server on the Tor network. Once running, an attacker on the malware can monitor the phone, send SMS messages to premium numbers and text messages to and read to the victim.
It also installs a proxy to perform man-in-the-middle attacks, and injects malware into Google Chrome. CSIS discovered that the malware can not be installed on Android devices with Russian language setting. MazarBOT as the malware is called, has been for some time offered forums for cybercriminals. “But this is the first time we have seen attacks with malware,” said Peter Kruse of CSIS.
No comments:
Post a Comment