Doing Business | IT & Technologies

July 06, 2016

HummingBad malware infects 10m Android devices

Over 10m Android devices have been infected with a new piece of malware called HummingBad, according to security firm Check Point.

The HummingBad malware is capable of taking over a smartphone or tablet, stealing and selling on user information – from email accounts and contacts to banking information and everything needed for identify theft – as well as downloading unauthorised apps and tapping on advertising, a report by the cyber security firm says.

Check Point said that it has been tracking HummingBad since February and that, after a spike in infections in May, the malware has now passed the 10 million mark globally.

The malware can infect an Android smartphone or tablet if the user browses the wrong site, in so called drive-by-download attacks. HummingBad then attempts to gain access to the underlying Android system by using “root access” to take full control. If it cannot gain root access it then tricks the user into giving almost full control via a fake update notification.

“If successful, attackers gain full access to a device,” said Check Point. “If rooting fails, a second component uses a fake system update notification, tricking users into granting HummingBad system-level permissions.”

Once the malware has control of the device it can use its control of permissions to force it to download apps and tap on adverts to generate fraudulent advertising revenue potentially without the user’s knowledge. The attackers could also sell access to the device or the user’s information, the firm said.

Checkpoint says that HummingBad-infected devices have been detected across the globe with 1.6m devices in China and 1.35m in India topping the list. The US has 288,800 infected devices, while the UK and Australia both have around 100,000 devices with HummingBad operating on them.

Google said: “We’ve long been aware of this evolving family of malware and we’re constantly improving our systems that detect it. We actively block installations of infected apps to keep users and their information safe.”

As smartphones have become more popular malware that targets both Android and iOS has increased in volume and effectiveness. Both platforms made moves to protect devices from these kinds of attack. Due to Apple’s control of both hardware and software, it has had more success in getting users to upgrade to the latest and most secure versions of its iOS, where Android updates can take months, years or never happen at all for devices not directly controlled by Google.

The Android-maker has recently separated security patches from the rest of Android, allowing security updates to be pushed out on a monthly basis for its Nexus and Pixel devices. Other third-party Android manufacturers, including Samsung and LG, pledged to follow Google’s lead with prompt security patches, but many others are slow to release updates to user phones, leaving them exposed.

For those that are impacted by HummingBad, a factory reset might be the only recourse, although even then it could remain if it has gained access to a protected part of the device through root access.

Text by Guardian
 

Tags Cloud

20102011accaaccidentaccidentsADSUadvertisingafghanistanAfrAsiaafricaagalegaagreementagricultureagroAHRIMAIairair asiaair australAir Franceair madagascarair mauritiusairasiaAirlinesairportairway coffeeAlbionalgeriaalibabaalteoAlvaro SobrinhoamazonAmeenah Gurib-FakimAMLandroidangolaAnil BachooApollo Bramwellappappleappointmentsappsaquaculturearab townarrestArtArvin BoolellasiaATMATOauditaudit reportaustraliaaustriaaviationawardawardsAxcel ChenneyBABagatelleBagatelle DamBAIBangladeshbankBank OnebankingbanksBar CouncilbarclaysBDObeachbeachesBeau Bassin-Rose HillbeautybeerBelgiumBelle-MareBelle-RiveBet365betamaxbettingBharat Telecombig databitcoinblue economyBlue-BayBOIboko haramBollywoodBOMbombingbookbookmakerbooksbossBotswanabpmlBPOBramer BankbrazilbrexitBritish AirwaysbudgetbuildingbusesBusinessbusiness trendsCabinetcall centresCanadacanecareercareer tipscargocarnivalcasinoCaudanCCIDCCMCCTVCEBcelebretiescelebritiescementChagoscharityCharlie HebdoCHCchilechinachromeCIELcigarettesCim FinancecinemaclashesCMTcomoroscompetitionconcertconferenceConfinementCongoconstitutional amendmentconstructioncontestcontestscontractcooperationCoronaviruscorruptioncounterfeitcoupCourtCourtscouvre-feuCOVID-19CPBCPEcreativitycreditscrisiscruise shipcruise shipsCSOCT PowerCultureCurepipecustomercustomerscustomsCVCWAcyclingcyclonedamDawood RawatdayDBMdeficitdenguedeportationdevelopmentDiego GarciadivalidoctorsdodoDomaine les PaillesDonald TrumpDPPdrug traffickingdrugsDTAADubaiDuty Freee-commercee-servicesearthquakeebeneebolaecoécolesecologyeconomicEconomic Development BoardeconomicseconomyEducationeducation abroadeducation reformEEZEgyptEIILMelectionelectionselectoral reformelectricityelon muskembassyEmiratesemirates airlinesEmtelenergyENLentrepreneurshipEnvironmentEOCEUEuroEuropeeventeventsexamexaminationexamsexpoexportfacebookfairFalcqfarmersfarmingfashionfast foodfbiFDIfeefeesferryfestivalFievre AphteuseFIFAFIFA World CupFilm Rebate SchemefilmingfilmsfinancefinancesfinancingFirefishfishingFIUFlacqFlic-en-FlacfloodFloodsflourfonction publiquefoodFootballforecastforeign workersForumFrancefraudfruitfruitsFSCFTAfuelfunnyGAARgabongadgetsgalaxygalaxy notegamblinggame of thronesgamesgasgazaGDPGermanyghanaGlobal BusinessgolfGoodlandsgoogleGorah Issac casegovernmentGRAGrand Baygrand-baieGrand-BassinGrand-Gaubegreecegreengreen energygrippeGTUH1N1hackershajjhamashappinessHawaiihawkershealthhealthcareHeritage Cityhi-techhigher educationhighlandshistoryHolcimholidaysHong Konghorse raceshorse racingHospitalhotelhotel businesshotelshowhow toHRHRDCHSBCHSCHSC ProhtchungaryhuntingHusein Abdool RahimIBAIBLICACICTICTAID cardiframacillegal fishingillegal migrationillegal workersIMFimportindiaIndian OceanIndian Ocean Island GamesIndonesiainflationinfluenzaInfographicsinfrastructureinnovationinnovationsinsuranceinterest rateinternetinterpolInterviewinterview tipsinvestinginvestmentinvestmentsIOCIORECiosiPadiphoneIPOiraniraqirelandIRSISISislamicisraelITItalyjapanJean-Claude Bastos de MoraisJellyfishJewelleryJin FeiJIOIjobjobsjockeyjournalismJulian AssangeKailash TrilochunKenyakitesurfingKPMGkreolla buttelabourLafargelandlandslideLarsen & ToubrolawlawslayoffsLe MorneleadershipleakLepeplexpressliberiaLibyalifeloanloanslocal governmentLockdownlogisticslondonlotteryLottotechLRTLufthansalycheeMadagascarmade in morisMahebourgmalariamalaysiamalaysia airlinesMaldivesMalimallmanagementmanagement tipsmanufacturingmarketmarketingmarketsMauBankMauritiansmauritiusMBCMCBMCCIMDFPMeatmeccamediaMedical CouncilMedical tourismmedicamentsmedicineMedineMedPointmeetingMEFMegh PillayMESMeteoMetro ExpressMEXAmexicoMFAMGIMHCmichaela harte caseMicrosoftMIDMidlandsMIEmigrationmigration crisisminimum salaryminimum wagemiss mauritiusmistakesMITDmlMMMmobilemobile phonesMokamoneymoney launderingmonkeyMont-ChoisyMoody’sMoroccomotivationmoviesMozambiqueMPAMPCMPCBMPLMQAMRAMSBMSCMSMMTMTCMTPAMusicMV BenitaNad SivaramenNaïadeNamibiaNandanee SoornackNarendra ModinasanatureNavin RamgoolamNavind KistnahNCBNCGNDUNECnefNegative Income TaxNelson MandelaNeotownNepalnetherlandsnetworkingNew Mauritius Hotelsnew zealandNGONHDCNICNICHLNigerianight clubsNitin Chinien caseNobel Prizenokianorth koreaNRBNTANTCNWCCNWECOCDEoceanocean economyofofficialsoffshoreoilOlympic GamesOmega ArkOmnicaneoniononlineopinionOppositionorangeoscaroscar pistoriusOUMoutsourcingPakistanpalestinePamplemoussesPanama Paperspandit sungkurParadise PapersparliamentPaul BérengerpensionpensionspeoplePereyberepermis de travailPhilippinesPhoenix Beveragesphonespicture of the daypillspiracyplageplagueplanPlanet Earth InstitutePMPMEPMOpmsdPNQpokerpolicepoliticspollutionPonzi SchemeportPort LouisPort-LouispostPovertyPPPPRPravind JugnauthPRBpresentationpresentation tipspresidentpricepricesprisonproblemprofitprojectprojectsprostitutionprotestspsacPSCpsychologyPTRpublic functionpublic servicepwcQatarQuantum Globalquatre-bornesquotesrainsRajindraparsad SeechurnRakesh GooljauryransomwareratesratingratingsRavi YerrigadooRDAreal estaterecallsreformreformsrefugeesreligionrentrepo ratereportRESRésidence Barklyrestaurantrestaurantsresultresultsresumeresume tipsretailReunionrevenuericeRiche-TerreriseRiviere-du-RempartRiviere-Noireroadsroche-boisRoches-Noires caseRodriguesRogersrose-belleRose-HillrosewoodRoshi BhadainRum and SugarRundheersing BheenickrupeeRussiaRwandasafetySAJsalariessalarysalesalessales tipssamsungsanctionssaudi arabiaSBIsbmSCscamscandalSCBGscholarshipscholarshipsSchoolschoolsscienceseasecuritySEMSEMDEXSenegalSeychellesShakeel MohamedShanghaisharksshootingshoppingshopping fiestashopping mallshopping mallsshowShowkutally SoodhunSICsicomSierra LeonesingaporeSITskillssmall businessSmall Planters Associationsmart citysmartphonesSMeSME MauritiusSMEDASMFsmmsnapchatSobrinho casesocialsocial mediasocial networks & messengersSofitelsoftwaresolar energySomaliasonysouthsouth africaSouth China Seasouth koreasouth sudanspainsponsorshipsportSportsSquatterssri lankaSSRStar KnitwearstartupsstatisticsstatsSTCstockstock marketstocksstrategystreet vendorsStressstrikestudystudy abroadstylesubventionsuccesssuccess storysugarsugar canesummitSun ResortsSun Tan caseSunkai caseSunnystarssupermarketssurveySwanSwedenSwitzerlandsyriaTAtabletsTaiwanTanzaniataxtax fraudtax heaventaxesTbillsteateacherTeachersteamTECtechnologytelecomtendertendersterrorismtertiarytextilethailandthethefttimetime managementtipstototaltourismtoystradetrade feetradingtrainingtrainingstransporttraveltrendsTrioletTripAdvisorTrou-aux-BichestsunamitunaTunisiaTurfTurkeyturkish airlinesTVtwittertyphoonUdMUgandaukukraineununemploymentUNESCOunionsuniverseuniversityuomUSUTMvacanciesvacancyVacoasVacoas Popular Multipurpose Cooperative SocietyVacoas-PhoenixVanilla Islandsvarma caseVATVeekram BhunjunvegetablesVerizonvideoVideo of the Dayvirtual realityvisaVishnu Lutchmeenaraidoovisitvivo energyvolcanowasteWaterWaterparkWeatherwest africawhatsappWhitedot Casewi-fiwikileakswindowsWMAwomenworkwork abroadworkersWorkshopWorldWorld Bankwriting tipsWTOXavier-Luc DuvalyahooYasin DenmamodeyemenYEPYerrigadoogateyoutubeZambiazimbabwe
Mauritius
© 2010-2020 mega.mu