The Register® — Biting the hand that feeds IT

Feeds

SMSZombie wraps self in nudie pics, slips into 500,000 Android devices

Trojan money-slurper aimed at China Mobile payment platform

By John Leyden, 20th August 2012
  • print
  • alert

Regcast training : Hyper-V 3.0, VM high availability and disaster recovery

A strain of resilient Android Trojan has infected 500,000 devices, mainly in China.

SMSZombie is designed to exploit security shortcomings in the mobile payment system used by China Mobile to generate unauthorised payments. The malware also steals bank card numbers and money transfer receipt information, mobile security firm TrustGo explains.

The malware poses as "wallpaper" applications featuring racy titles and nude photos. Users who install these dodgy apps get infected. Disinfecting devices is a tricky process because the malware disables users' ability to simply delete it, TrustGo warns.

Security Week adds that the malware has already infected 500,000 smartphones and other devices running Android.

SMSZombie has been found on China’s largest mobile app marketplace, GFan. TrustGo's SMSZombie removal instructions can be found here. ®

Agentless Backup is Not a Myth

COMMENTS

House Rules Send Corrections
All Reader Comments (18)
Highly Rated
AF
Reply Icon

re: Looking at app permissions before installing

I do now, after seeing that the "Weather Channel" app wanted this permission:

DIRECTLY CALL PHONE NUMBERS

Allows the app to call phone numbers without your intervention. Malicious apps may cause unexpected calls on your phone bill. Note that this doesn't allow the app to call emergency numbers.

Why on earth does a weather app need the ability to call phone numbers without me knowing about it? Hells to the no.

4
0
DougS
Reply Icon

Morris worm

The Morris worm dates from 1988, and back then there probably wasn't a single Mac or Windows computer connected to the Internet. No matter how many security holes either would have had back then, without being on the Internet, worm propagation would be rather difficult...

The problem with Android security is that it relies on the app to only ask for the permissions it needs, and the user to know/care about what the various permissions mean instead of just blindly approving them. Anything that relies on the end user may be safe in the hands of the technically inclined, but that's only a single digit percentage of the population, leaving many many people for the bad guys to prey upon.

2
0
LarsG
Reply Icon

ANOTHER WEEK ANOTHER OPERATING SYSTEM FLAW

These flaws are dropping out of the sky like birds*it.

It's the ones that haven't been found yet that are dangerous.

1
0

More from The Register

breaking news
Number of cops abusing Police National Computer access on the rise
Only a telegram from the Queen can get you off it
124
breaking news
NSA PRISM snoop-gate: Won't someone think of the children, wails Apple
10,000 things probed, mostly about missing kids, Alzheimer patients, we're told
96
breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Flash flaw potentially makes every webcam or laptop a PEEPHOLE
But it's a Google problem - Chrome only, insists Adobe
57
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17
breaking news
'BadNews is malware' says outfit that found it
Google says code harmless but Lookout says code base is evolving
15
Panda-peddlers cuffed for chess gambling gambit
More porridge on the menu for Chinese coders after second offence
13