Kemoge is the Newest Mobile Malware that Can Take Over Your Android

dgstorm

Editor in Chief
Staff member
Premium Member
Joined
Dec 30, 2010
Messages
10,992
Reaction score
3,961
Location
Austin, TX
kemoge1.jpg

Android is under attack again. This time the malicious code is called Kemoge, and it can actually take over your smartphone. Here's a quote with a few more details,

Following a previous discovery, FireEye Labs mobile researchers discovered another malicious adware family quickly spreading worldwide that allows for complete takeover of a user’s Android device. This attack might also originate from China.

The malicious code was named this way due to its command and control (CnC) domain. Here's the advice given by the security researchers at FireEye in order to avoid getting infected:

  • Never click on suspicious links from emails/SMS/websites/advertisements.
  • Don’t install apps outside the official app store.
  • Keep Android devices updated to avoid being rooted by public known bugs. (Upgrading to the latest version of OS will provide some security, but it does not guarantee that you will remain protected.)
Source: Kemoge: Another Mobile Malicious Adware Infecting Over 20 Countries « Threat Research

Thanks for the tip, @CJM!
 

SquireSCA

Silver Member
Joined
Jan 12, 2011
Messages
1,571
Reaction score
226
Location
Atlanta, GA
Hmmm... Suddenly Apple's approach to things isn't looking quite as bad... hehe
 

Ollie

Droid Does
Joined
Apr 13, 2012
Messages
3,424
Reaction score
2,068
Location
South Coast
Current Phone Model
Note Edge - iPhone 6 Plus
Hmmm... Suddenly Apple's approach to things isn't looking quite as bad... hehe

That's what they want you to believe. Stay out of shady app stores and you will never have an issue. All of these malware stories have a common denominator...sideloading.
 

SquireSCA

Silver Member
Joined
Jan 12, 2011
Messages
1,571
Reaction score
226
Location
Atlanta, GA
Yeah, except that a lot of these huge exploits in the past several months haven't been about side loading apps. Some were from receiving a text message or visiting ab infected website, another embeds the malicious code in audio files, etc...
 

Ollie

Droid Does
Joined
Apr 13, 2012
Messages
3,424
Reaction score
2,068
Location
South Coast
Current Phone Model
Note Edge - iPhone 6 Plus
Yeah, except that a lot of these huge exploits in the past several months haven't been about side loading apps. Some were from receiving a text message or visiting ab infected website, another embeds the malicious code in audio files, etc...

That was the Stagefright exploit. Which no one was able to confirm that it had actually been used.

Apple just had their grand introduction to malware in their official appstore last week. It was over in China.

Very rarely does Google have to purge their official appstore of any malware. It's always in a country that doesn't support Google Play and the users there have to use a third party app hub.
 
Top