Trojan hits Android smartphones

Trojan virus hidden in "harmless" media player application

Cyber security company, Kaspersky Lab, has identified the first virus to hit Google’s Android operating system, adding to the small but growing list of malicious attacks against smartphones.

The Trojan virus, named Trojan-SMS.AndroidOS.FakePlayer.a, is distributed through a message sent to users prompting them to install a 13 kilobyte (KB) “harmless” media player application. Once installed, the Trojan virus sends SMS messages to premium rate numbers without notifying the user.

In a security alert sent out by Kaspersky Lab, the security company said it believed the Trojan program was targeted at siphoning money from smartphone user’s mobile accounts and delivering it to cybercriminals.

The Trojan is, according to Kaspersky Lab, the first identified to specifically targeted Android-based smartphones.

Last year, two separate malicious attacks hit the iPhone, with the ”Ikee” and ”Duh” or “Ikee.B” both targeting jailbroken iPhones by using the default secure shell (SSH) password that often went unchanged by users on the phone.

The vulnerability was initially used by Australian teen, Ashley Towns, to spread pictures of 1980s pop star, Rick Astley, but later taken advantage of to upload user banking information to a server in Lithuania.

Kaspersky Lab’s mobile research group manager, Denis Maslennikov, attributed the new Android virus to increasing sales of smartphones running the platform.

“We can expect to see a corresponding rise in the amount of malware targeting that platform,” he said in a statement.

The Trojan requires the user to first agree to install the player.  

More about: Google, Kaspersky, Kaspersky Lab, SSH
References show all

Comments

1

Mike T.

Wed 11/08/2010 - 00:06

Okay, let's get this straight, it's a Trojan HORSE, not a virus. Trojan Horses have to be installed by the user and do nasty things that are not expected.

And no matter what people say, Microsoft products don't count as Trojan Horses.

2

jmmx

Wed 11/08/2010 - 01:33

I am glad you noted about the iPhone attacks that they were "targeting jailbroken iPhones" only. The vulnerability exists only on jailbroken phones.

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the Computerworld comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: smartphones, kaspersky lab, Android
Whitepapers
All whitepapers
Sign up now to get free exclusive access to reports, research and invitation only events.
Featured Download
/downloads/product/170/gadwin-geforms/

Gadwin GeForms

GeForms allows you to create your own forms or fill in existing forms electronically. Using GeForms you are provided with sophisticated form design tools which ...

Computerworld newsletter

Join the most dedicated community for IT managers, leaders and professionals in Australia