What's new
DroidForums.net | Android Forum & News

This is a sample guest message. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

[WARNING] Hacked websites auto-downloading malware to Android devices

R

r314bd

Member
Just saw a thread about this on reddit. Someone was browsing his local pest control company's website on his Android device and a split second after visiting the page, a download masquerading as an official update.apk started automatically. Apparently legitimate websites are now being unwittingly infected by this malicious code.

A rep from Lookout posted in the thread saying they just added the exploit ("NotCompatible") to their file system monitoring/install monitoring...but it was only added within the last couple hours so be warned that this stuff is popping up, and if you aren't using some sort of anti-virus software with download monitoring on your device, you probably should.

EDIT: Lookout just added a blog post about it on their website.
 
Nice to know, thanks.

Tapped from a Galaxy Nexus using Xparent ICS
 
Just an FYI...in order for this attack to work, your phone has to have "accept APKs from unknown sources" checked in your settings. This is something that is NOT checked by default, so unless you have deliberately enabled it, you are automatically immune to this attack.

In order to actually install the app to a device, it must have the “Unknown sources” setting enabled (this feature is commonly referred to as “sideloading”). If the device does not have the unknown sources setting enabled, the installation will be blocked.

The Official Lookout Blog | UPDATE: Security Alert: Hacked Websites Serve Suspicious Android Apps (NotCompatible)
Click to expand...

From what I understand, even then you will still be prompted to install. It won't ninja install. I don't think any APKs can do that, even official ones. You don't need any security apps like Lookout installed. You can be immune to this attack using only native tools.
 
JeffDenver said:
Just an FYI...in order for this attack to work, your phone has to have "accept APKs from unknown sources" checked in your settings. This is something that is NOT checked by default, so unless you have deliberately enabled it, you are automatically immune to this attack.

From what I understand, even then you will still be prompted to install. It won't ninja install. I don't think any APKs can do that, even official ones. You don't need any security apps like Lookout installed. You can be immune to this attack using only native tools.
Click to expand...

Where is this option in the settings?
 
You must log in or register to reply here.

Similar threads

U
Fire-up Your AV -- Android Virus' on the Loose
Replies
14
Views
6K
Taegost
T
D
PSA: New Android Malware Discovered by Lookout Could be 'nearly impossible to remove'
Replies
8
Views
2K
Ollie
O
danDroid
New Android malware warning!
Replies
11
Views
5K
liftedplane
L
D
Google Pulls Malware From Android Market; Also, $1M Stolen This Year Due to Malware
Replies
9
Views
3K
MissionImprobable
M
D
New Mobile Scareware Ads Try to Trick Users Into Thinking They Have a Virus
Replies
5
Views
5K
dgstorm
D
Back
Top