Wednesday, June 20, 2012

Fake Android Antivirus App



 On the 4th of June 2012 Kaspersky Lab found 3 APK files of ~207 kb in size each heuristically detected by our engine as HEUR:Trojan-Spy.AndroidOS.Zitmo.a. All these applications are malicious and were created to steal incoming SMS messages from infected devices.


It fake Android application security, most likely, the mobile component of banking malware Zeus. When you run the application displays a screen image, which has long been associated with Windows, fake antivirus software, also known as FakeAV or scareware. However, this may not be a mobile application scareware, but the new version of ZitMo - Zeus in Mobile. ZitMo malicious applications mobile applications that are used by hackers with the Zeus Trojan computer to steal money from bank accounts online.

Their goal is to steal mobile transaction authorization number (mTANs) has sent banks to their customers through messages SMS. Although the application displays an activation code when opened, it shows fake security alerts and requests the user money as scareware applications do.

Zeus Trojan has the ability to enter a computer pop-up windows in Internet banking Web sites when they are open on infected computers. This feature has been used in the past to distribute ZitMo applications like security updates from the target banks. Similarly, Android Security Suite Premium can be advertised as a free Android security products offered by the bank of the victim.

Kaspersky Mobile Security: You make calls, send SMSs, browse the web and communicate via social networks every day. Your smartphone is your life. Kaspersky Mobile Security keeps your private life truly private.

Kaspersky researchers are still analyzing how malicious application spreading. See More - click here

No comments:

Post a Comment