Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Crime Android Cellphones Handhelds Privacy Security

3-in-1 Android Malware Acts As Ransomware, Banking Trojan and Info Thief 25

An anonymous reader writes: Why stop at asking ransom for encrypted files when you can also steal personal info, passwords, online banking credentials and credit card details, and sell it or use it to get even more money? Palo Alto researchers have recently analyzed Xbot, a Trojan that is capable of doing all the aforementioned things, and have found it mimicking 22 different Android apps.
This discussion has been archived. No new comments can be posted.

3-in-1 Android Malware Acts As Ransomware, Banking Trojan and Info Thief

Comments Filter:
  • Hah. (Score:5, Informative)

    by toonces33 ( 841696 ) on Friday February 19, 2016 @10:12AM (#51541351)

    Good grief:

    The malware does encrypt files, but it does so by simply XORing each byte in all files by the fixed integer number 50. That means that the malware’s claims that the files can’t be decrypted without paying the ransom and receiving the decryption key is not true.

    • Re: (Score:3, Funny)

      Stop reading tfa... What is this 1999?

    • Really, you expect honesty from malware writers? :-P

    • by AmiMoJo ( 196126 )

      Yawn. Can we stop posting about Android malware unless it does something interesting? Yeah, we get it, a platform that gives you the freedom to install apps from outside the curated app store also gives you the freedom to shoot yourself in the foot. In other words, it's like every OS ever except for iOS.

      • iOS... you mean the one in which many useful apps aren't even possible because of the sandboxing.

        It really is a tradeoff. If you want a perfectly safe world, be prepared to give up a lot of freedom. Personally, I don't want a nanny OS. But that's just my preference.
    • Such weak encryption. I would've doubled the security by doing a double XOR 50.

  • by Bearhouse ( 1034238 ) on Friday February 19, 2016 @10:25AM (#51541443)

    The actual article is here:

    http://researchcenter.paloalto... [paloaltonetworks.com]

    • by Anonymous Coward

      Yeah, I went there also.
      Anyone see the list of the 22 apps?
      Me either.

  • Banking info (Score:5, Insightful)

    by Anonymous Coward on Friday February 19, 2016 @10:35AM (#51541513)

    If it steals banking info, it should automatically log in to your bank and pay the ransom itself.

  • Outrageous! Who would be so incompetent as to let this happen?? Let's all switch from iPhones to Androids, immediately!

    Huh? It's Android that got hit, not iPhones? Oh. Right, than...

    (Delete, delete, delete...)

    Outrageous! Who would be so incompetent as to let this happen?? Let's all switch from Androids to iPhones, immediately!

How many QA engineers does it take to screw in a lightbulb? 3: 1 to screw it in and 2 to say "I told you so" when it doesn't work.

Working...