Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×
China Crime Security

Sophisticated Bribe Scheme Gets Malware Onto Chinese Antivirus Whitelist 20

Posted by EditorDavid from the black-hats-vs-white-hats dept.
An anonymous reader writes "Malware operators have bribed employees of a gaming company to bundle malware with their mobile apps." Because the app-maker reportedly had a good-faith agreement with China's biggest antivirus company, the apps were apparently whitelisted without a thorough check, according to Softpedia. They cite a report from Check Point which describes how attackers would later pretend to be shoppers on a popular Chinese site where pictures of the desired items are sent to sellers. "The seller would open the picture on a PC and become infected," writes Check Point, "because the Trojan would not be detected," and a subsequent request for a refund would deliver the login credentials for the seller's payment account.

"This example illustrates how important it is to avoid third-party stores and to instead at least rely on stores with more reliable security," argues Check Point. "But even still, stores like the App Store and Google Play aren't immune to threats."
This discussion has been archived. No new comments can be posted.

Sophisticated Bribe Scheme Gets Malware Onto Chinese Antivirus Whitelist More

Sophisticated Bribe Scheme Gets Malware Onto Chinese Antivirus Whitelist

Comments Filter:

  • Um... "Avoid 3rd Party Stores" except F-Droid! (Score:4, Insightful)

    by Freshly Exhumed ( 105597 ) on Saturday April 09, 2016 @02:12PM (#51875367) Homepage

    Please don't lump in F-Droid with all the calls to avoid 3rd party app stores.

    • Agreed, and I'd probably also exclude the Amazon store from being painted with that same brush. Malware infesting 3rd party Asian app stores isn't exactly news to someone who pays attention to these things. That alone accounts for a huge percentage of the malware found on Android devices.

      Still, as a general rule, I think it still holds. If someone don't know enough to make that evaluation for themselves, it's probably best for them to stick to the official store.

  • then the 1st party app store needs no censorship (other then virus like code)

    No ban on emulators.

    Why not have an adults only part of the app store? They have rated R movies in there media store and music with explicit lyrics

  • Wrong conclusion (Score:4, Insightful)

    by enriquevagu ( 1026480 ) on Saturday April 09, 2016 @04:49PM (#51876105)

    Even after reading TFA, this example DOES NOT illustrate how important it is to avoid third-party stores.

  • Chinese antivirus. That's like a nuclear waste company making food products or hiring a child molester as your babysitter.

  • I may be mistaken, but I don't believe Google Apps (which includes the official Google Play Store) is not available in China, thus, they have to default to a bunch of shady back-alley app store sites instead.

    Admittedly, I haven't read TFA yet, but I'm really curious as to how loading an image manages to pull through and install a trojan.

Slashdot Top Deals

The Tao is like a glob pattern: used but never used up. It is like the extern void: filled with infinite possibilities.

Close