Security researchers have detected a new trojan horse targeting Android users.
Using bogus Anroid apps, HongTouTou (also known as ADRD trojan) is using Android app marketplaces and forums to spread. The campaign is localized to Chinese; namely, it attempts to trick only Chinese speaking users.
Upon execution, the malware requests additional capabilities, next to sending the device's IMEI and IMSI to a remote host.
HongTouTou is included in repackaged apps made available through a variety of alternative app markets and forums targeting Chinese-speaking users. To date Lookout security researchers have identified fourteen separate instances of the HongTouTou Trojan repackaged in Android apps including RoboDefense (a well known game) and a variety of wallpaper apps.
- Man-in-the-middle attacks demoed on 4 smartphones
- Researchers use smudge attack, identify Android passcodes 68 percent of the time
What do you think is the biggest problem from a security perspective when it comes to mobile malware? The flawed efficiency-driven Symbian OS model? New trust-chains relying on already authenticated user base, or plain simple social engineering attacks.