I have seen Android malware delete and send SMS messages but this is the first time I saw an Android malware act as an SMS relay. My colleagues and I were recently able to analyze a sample of an Android malware that uses an infected device as a proxy for sending and receiving messages. Unlike…
Read MoreMark Balanza (Threats Analyst)
Threats Analyst
We recently received a sample of an Android malware known as DroidDreamLight currently circulating on the Web. Once executed on an infected device, this malware steals mobile-specific informationĀ that it thenĀ usesĀ for malicious activities. Similar to previous information-stealing Android malware, DroidDreamLight, detected by Trend Micro as ANDROIDOS_DORDRAE.L gathers the following specific information fromĀ an infected mobile phone: Device…
Read MoreWe recently analyzed an Android OSĀ malware that specifically targets China Mobile subscribers. China Mobile is a state-owned telecommunications serviceĀ providerĀ thatĀ is considered the world’s largest mobile phone operator. The malware arrives through a link sent through SMS. The said message tells the China Mobile users to install a patch for their supposedly vulnerableĀ devices by accessing the given…
Read MorePage 2 of 21