Torrent Invites! Buy, Trade, Sell Or Find Free Invites, For EVERY Private Tracker! HDBits.org, BTN, PTP, MTV, Empornium, Orpheus, Bibliotik, RED, IPT, TL, PHD etc!



Results 1 to 2 of 2
Like Tree1Likes
  • 1 Post By jep28

Thread: Android Adware Places Ads Over Other Apps

  1. #1
    Donor
    jep28's Avatar
    Reputation Points
    6358
    Reputation Power
    100
    Join Date
    Sep 2015
    Posts
    651
    Time Online
    20 d 13 h 8 m
    Avg. Time Online
    9 m
    Mentioned
    187 Post(s)
    Quoted
    86 Post(s)
    Liked
    516 times
    Feedbacks
    15 (100%)

    Android Adware Places Ads Over Other Apps

    A recently detected Trojan can install an unwanted program module on Android-powered mobile devices, which displays advertisement on top of the majority of launched programs.

    The Trojan is called Android.Spy.510 and it was detected by Doctor Web specialists. According to the security firm’s press release, the Trojan is distributed by cybercriminals as a modified and initially non-threat AnonyPlayer media application.

    Its Trojan version has all the legitimate functions and is absolutely operational—thus, the victim will not be suspicious about the threat.


    Once installed and launched, Android.Spy.510 gathers and sends confidential data to the command and control server (C&C server) including login and password to the Google Play user account, mobile device model, SDK version of the operation system, and availability of root access on the device. Then the Trojan tries to install an additional hidden program package with necessary malicious features. To do that, Android.Spy.510 displays a special text message which offers the victim to install the AnonyService application that is supposed to assure users` anonymity and to protect confidential information from third parties.

    However, this application is, in fact, an advertising module added to Dr.Web virus database under the name of Adware.AnonyPlayer.1.origin.

    After the installation, Adware.AnonyPlayer.1.origin prompts the victim to allow the use of the Accessibility Service. Then it goes to a standby mode and starts its malicious activity only in several days. Once the specific period of time is over, Adware.AnonyPlayer.1.origin starts to monitor all system events and waits for the victim to run a program. If they do so, the module immediately displays an advertisement.

    Doctor Web security researchers strongly recommend Android devices owners to download applications only from reliable sources. Besides, users should pay careful attention to the programs that request to allow them the use of the Accessibility Service.

    Once the malicious application gets such privileges, it can interact with graphic interface (for example, simulate user actions in dialogs) and even intercept the information entered by the victim, operating as a keylogger. As a result, the program will be able to steal such confidential data as text messages, search queries and even passwords.
    DGM likes this.

  2. #2
    DGMDonor Icon
    DGM is offline
    iLLuSioNist
    DGM's Avatar
    Reputation Points
    77147
    Reputation Power
    100
    Join Date
    Aug 2015
    Posts
    4,744
    Time Online
    204 d 20 h 52 m
    Avg. Time Online
    1 h 33 m
    Mentioned
    969 Post(s)
    Quoted
    453 Post(s)
    Liked
    4014 times
    Feedbacks
    170 (100%)
    @jep28 Useful News.

    I'm making it sticky for next 3 days so maximum member read it & get alert.
    Last edited by DGMDonor Icon; 12-01-2015 at 09:30 PM.
    DGM Says ! Be Busy Be Happy TI'ian. !


Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •