Menu
Android root malware widespread in third-party app stores

Android root malware widespread in third-party app stores

Users should be cautious when downloading from app stores other than Google Play

Four third-party app stores for Android have apps with a malicious component that seeks root access to devices, according to Trend Micro.

The security company found 1,163 Android application packages containing the malware, which it calls ANDROIDOS_ LIBSKIN.A, wrote Jordan Pan, a mobile threats analyst with Trend. The malware obtains root access to the phone, the highest level of access and privilege.

The apps containing the component were downloaded across 169 countries between January 29 and February 1 from marketplaces called Aptoide, Mobogenie, mobile9 and 9apps.

"We have already contacted these stores and informed them about these threats, but as of this writing, we have yet to receive any confirmation from their end," Pan wrote.

Security experts have long advised that people steer away from third-party apps stores, which may not have the same quality control as Google's Play store. Google vets the apps that are allowed on its store, although malicious ones sometimes slip in.

The malicious component found by Trend is wrapped into legitimate applications, such as games or music streaming apps. The malware can download other apps to a phone without a user's knowledge, Pan wrote.

"These secretly downloaded apps will then present themselves as ads luring users to download other apps from time to time," he wrote. "It can also be used to collect user data."

When pop-up ads begin appearing, it's not clear to the phone's user what app is generating the ads.

"The popups lure users into clicking unwanted apps," Pan wrote. "Clicking on the ads may not necessarily lead the user to the respective app or site."

The malware also collects a variety of data, including the device ID, network, other apps that are running on the device and more.


Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags PCtrend microsecurityGoogle PlayAndroidmalware

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments