Symantec Reports First Android Master Key Hacks Have Begun - HotHardware
Symantec Reports First Android Master Key Hacks Have Begun

Symantec Reports First Android Master Key Hacks Have Begun

Sometimes it stinks being right. To wit, Symantec earlier this month talked about the discovery of a so-called "Master Key" vulnerability in Android that would allow remote attackers to inject malicious code into legitimate apps without invalidating the signature. Symantec called it a "serious Android vulnerability," fearing that it would quickly be spotted in the wild. Less than a month later, Symantec was proven right.

Norton Mobile Insight—our system for harvesting and automatically analyzing Android applications from hundreds of marketplaces—has discovered the first examples of the exploit being used in the wild," Symantec stated in a blog post. "Symantec detects these applications as Android.Skullkey. We found two applications infected by a malicious actor. They are legitimate applications distributed on Android marketplaces in China to help find and make doctor appointments."

Chines Android Apps

In both cases, an attacker added code that allows him/her to remotely control devices, steal sensitive data, send premium SMS messages, and even disable a few Chinese mobile security software apps by using root commands (if available), Symantec says.

Due to the low level of difficulty, Symantec expects attackers to continue leveraging the vulnerability. As always, it's recommended you only download apps from trusted sources (Symantec said it's found four additional instances of this attack on third-party app sites), and of course Symantec would love it if you ran their security software on your mobile device (can we say vested interest?).
0
+ -

This is often why I prefer using mobile websites with the mobile browser. It's hard to tell what exactly apps are doing on your phone.

But I suppose even then, you have to be careful of malicious websites.

Maybe I'll just stay inside today...

0
+ -

I am blown away by the number of third-party app stores... WHY do people use these things? Maybe I'm just not adventurous enough, but the Play Store has always suited me just fine.

0
+ -

I absolutely agree but with one exception. the only time ive ever used was for one dev who got his apps removed from the play store which of course was an emulator. I trusted his apps and he put a lot of work into them. Other than that its just plain silly to do it otherwise.

+2
+ -

So they share the information with the world, and then they get surprised when people use that information? Smart, Symantec.

0
+ -

Let me start off by saying this one word..."China"

so there are tons off knocks and fakes of different products that are made over there all the time. my point of this is that this malware is being found in "legitimate applications being distributed on android marketplaces(indicating multiple when you should clearly be getting it from the play store) in china. ill repeat again in "china". so yeah if im not mistaking i dont know if they have access to the play store or not but this is as mentioned in the article being reported on by a company that makes money off this kind of propaganda if you will.

Login or Register to Comment
Post a Comment
Username:   Password: