Linked by Thom Holwerda on Wed 11th Aug 2010 21:00 UTC, submitted by namakemono
PDAs, Cellphones, Wireless Kaspersky has announced in this article the first trojan specific for Android. "The new malicious program penetrates smartphones running Android in the guise of a harmless media player application. Users are prompted to install a file of just over 13 KB with the standard Android extension .APK. Once installed on the phone, the Trojan uses the system to begin sending SMSs to premium rate numbers without the owner’s knowledge or consent, resulting in money passing from a user’s account to that of the cybercriminals."
Thread beginning with comment 436299
To read all comments associated with this story, please click here.
orly?
by zegenie on Wed 11th Aug 2010 21:16 UTC
zegenie
Member since:
2005-12-31

"Here, install this package"
"What does it do?"
"Oh, that's not important. Just install it. Look, it's shiny"
"Sure!"

...

"ZOMG! Stuff is happening! It's teh trojanz!"

Really? This is news?

Reply Score: 5

RE: orly?
by Hiev on Wed 11th Aug 2010 21:23 in reply to "orly?"
Hiev Member since:
2005-09-27

Well, when you let every single application to get to your users w/o the minimum control this is what happens.

Reply Parent Score: 1

RE[2]: orly?
by robmv on Wed 11th Aug 2010 22:46 in reply to "RE: orly?"
robmv Member since:
2006-08-12

Yea, like other mobile applications stores could check that you application behaves bad only the third sunday of the month, without source code access no store checks before distribution is perfect

By the way this applications was not distributed on the Android Market, people need to enable the setting to install apps from other places, and still Android warn the user you will give access to the app to send SMSs

Reply Parent Score: 4

RE: orly?
by namakemono on Thu 12th Aug 2010 13:10 in reply to "orly?"
namakemono Member since:
2009-07-01

Well, the news is that it is the first found. And will become worst.

Then suppose the trojan was in an app that uses SMS, like... something that sends messages to a group when an alarm is triggered. The SMS ability is needed and is part of original concept of that app.
If the app is open source, the trojan may be inserted, compiled and binary may be posted in an alternate repository - or the original, remember recent IRC server incident.

People - me included - tends to think "it will not happen to me". Sometimes I test open source programs and there is no guarantee that it is virus free, I am assuming the risk and using the RPMs.

Reply Parent Score: 3