“Mobile Malware from Timfonica to Triada”
Malicious software that are targeted for mobile phones and personal digital devices was firstly introduced by Marcos Velasco (Brazilian software engineer) to aware the masses about the upcoming threat.However, Timifonica being the early form of mobile malware orginated by Spain and diagnosed by Russian labs has its fame competence to send SMS to randomly created number of a service provider in Spain. It was the pioneer of mobile malware. In later year, a Trojan was released named Cabir, which spread itself on Bluetooth and runs on Symbian OS. Lots of other malicious virus has been designed and diagnosed over the years.
Humming bad is the most popular mobile malware of 2016. It has been replaced by the most wanted malware Triada. Triada an extremely hard to diagnose Trojan. It uses root privileges to substitute system files and exists in RAM.
Most impressive step of Triada is that it alters the zygote process of android. Zygote process is the main process in android OS that is used as template for every application. Which means that once the template is alter all the application will eventually get alter as this Trojan will became the part of all the application. As soon as this Trojan is downloaded. It collects all the information about the OS version and SD space and list if installed application etc. and send it to the command and server. Triada also extends it access to message and calls. This is how Triada operator earns in in-app purchase. Mostly developer choose SMS over for traditional payment as some time user may encounter internet issue. Triada functionality is to modify the SMS sent by the app. Since it is a modular trojan, it can be turn into anything by commands. During the in-app purchase Triada steals the money by modifying the messages so the money goes directly to its operator and not to the app developer in case the user has successfully completed the purchase.
Facts
- Yingmob gang has infected 10 million android devices with Hummingbad as of July 2016
- Triada cover three mobile trojans (Ztorg, Gorpo, and Leech) which work in co-operation
- It been called most sophisticated rooting malware.
- Preventing Triada from getting in is easier than removing it.
Stay safe from such thief….
Mobile malware remains a significant cybersecurity threat and Unsurprisingly, financial Trojans were the most prevalent form of mobile malware with approximately 30 percent targeted at stealing financial information. DO’s Never forget to update your device. Trojan face serious problem while trying to get into the system because a lot vulnerabilities were patched on updates.
It is recommended to not provide all the access to the application. Allow only limited access to the applications. Stay safe, it’s better to keep an antivirus in the mobile phone to keep the devices scanned and well in place.
