Browse archive

Latest news

Fighting cybercrime is on the right track

Google set to upgrade its SSL certs

IT security pros have trouble communicating with executives

Zeus variants are back with a vengeance

Facebook phishers target Fan Pages owners

Killer apps: The performance of networked applications

Is it time to professionalize information security?

Google researcher reveals another Windows 0-day

Twitter finally offers 2-factor authentication

DHS employees' info possibly compromised due to system flaw

Teens are into online sharing, but are also more privacy-aware

The dangers of downloading software from unofficial sites

Microsoft decrypts Skype comms to detect malicious links

Review: Logging and Log Management

Hacking charge stations for electric cars

Malicious fake Android AV apps pushed onto users

Posted on 18.05.2012

It seems that every week a new way of targeting Android users with malware is discovered, and most often than not, Russian users are primary targets.

Sophos' researcher Vanja Svajcer followed links lately disseminated through Twitter, and landed on a number of .ru domains pointed to the same IP address hosted in Ukraine.

"Depending on the URL you click on and URL parameters, you might be prompted (in Russian) to install fake updates for a variety of products including the Opera browser and Skype," Graham Cluley reports. "Or you might be presented with a page which prompts you to run a security scan on your phone."

The scans are, of course, bogus, and the apps offered after them are as well.

They appear to be antivirus applications - and sometimes they even present icons stolen from legitimate security firms such as Kaspersky Lab - but most of the time are actually premium rate Trojans.

Also, if one is very unlucky, the downloaded Trojans also have the ability to download further malware onto the device.