Trojanized Android app collects info, comments on NSA surveillance
Posted on 04.07.2013
An unusual Android Trojan has been recently unearthed by McAfee's researchers, embedded in a pirated version of a legitimate music app.

The app in question is Jay Z Magna Carta, which has ben recently made available on Google Play, and allows users of certain Samsung devices to listen to the rapper's new album on July 4, three days before the album comes out and the rest of the world can hear it.

The trojanized version has been offered for download on third party sites, and once installed and run, it doesn't give any indication that it might be malicious. Nevertheless, it works furiously in the background: it tries to download and install additional malware and attempts to send device info to a remote server each time the phone is restarted.

But on Thursday, July 4, users might notice that the app is not what it purports to be. The date triggers the app to replace the wallpaper on the infected device with an image of President Obama that apparently comments on recent surveillance scandal in the US, and to start a "NSAListenerService":


"The image and the service name NSAListener suggest a hacktivist agenda, but we havenít ruled out the possibility that additional malware may target financial transactions or other data," the researchers say.

"Based on the political message and the fact that it was embedded in an app that coincides with the release of Jay Zís latest album, we suspect the Trojan was recently introduced into the wild," they concluded, and urged users to always be careful when downloading apps from unknown or untrustworthy sources.









Spotlight

New Zeus variant targets users of 150 banks

Posted on 19 December 2014.  |  A new variant of the infamous Zeus banking and information-stealing Trojan has been created to target the users of over 150 different banks and 20 payment systems in 15 countries, including the UK, the US, Russia, Spain and Japan.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Mon, Dec 22nd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //