12345

11/18/2011

[Information] Status for Android-based mobile malicious file

1. Introduction

Based on our analysis about malicious files for Android, the number of files is exponentially increasing from June 2011.
It means that the number of Android user is rapidly increasing.
Actually the real damage case hasn't been reported in South Korea so far, however, it has great possibility to threat for foreigner user.
Therefore, users need to be careful on using this kind of applications.



2. Related information

Against the security threats especially on Android-based malicious file, INCA Internet has distributed Anti-Virus application for Android and given various information to public.

The trend of spreading technique of Android malicious file is continuously sophisticated and even delicate. The starting point of generating malicious file was for curious on certain atmosphere or for being proven certain concept; however, the aim for file can be easily diverted for malicious way.
On both quality and quantity, attacking technique is still evolving.

Step 1 is the data on victim's smartphone of anonymous user.
Step 2 is that its changing its for as a cybercrime for its purpose including inducing payment.
Finally, step 3 can be changed Zombie Phone for DDoS, chasing GPS, C&C Smart Server or even APT(Advance Persistent Threat).

* Status of collected malicious file and update.

Following graph is for our INCA Internet's 2011's collected files.



Based on graph, the number of samples had been rapidly increasing from Sep 2011 so far.

INCA Internet's nProtect Mobile for Android including detect and treat functions has been distributed free of charge.
Besides, Android phone users need to be careful on installation from being infected by malicious files.

3. Finishing

While installing application, we recommend you use official market, check requiring permission, and submit file if suspicious. To use smartphone safely from security threats of these malicious applications, we recommend following tips "Smartphone security management tips" for general users.

Smartphone security management tips

1. Use anti-virus SW from believable security company and keep updating the latest engine and using real time detecting function
2. Download the proven application by multiple users at all times.
3. Use mobile anti-virus SW to check downloaded application before using it.
4. Do not visit suspicious or unknown site via smartphone.
5. Try not to see MMS, text, e-mail from uncertain user.
6. Set strong password on smartphone always.
7. Turn the wireless interfaces like Bluetooth only be used.
8. Do not save important information on phone.
9. Do not try illegal customizing like rooting or jailbreak.

INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function with “nProtect Mobile for Android” for mobile such as malicious file stated above and runs responding system against various security threats.

2 comments:

  1. Pimphony

    Excellent Blog every one can get lots of information for any topics from this blog nice work keep it up.

    ReplyDelete
  2. Highster app offers business owners control – the monitoring and tracking of a mobile phone device in stealth mode, have a look at this link for more information.

    ReplyDelete