Technology
‘Agent Smith’ Android malware infected 25M devices
Image: Jaap Arriens/NurPhoto via Getty Images
Follow @https://twitter.com/PCMag
PCMag.com is a leading authority on technology, delivering Labs-based, independent reviews of the latest products and services. Our expert industry analysis and practical solutions help you make better buying decisions and get more from technology.
A new strain of Android malware has infected 25 million devices and modified legitimate apps with a malicious ads module, according to a report by the security company Check Point.
It’s believed the malware originated from a Chinese internet company that helps Chinese Android developers publish and promote their apps in foreign markets. The malware was disguised as Google-related updaters and “vending modules,” which hid its own app icons and automatically replaced already-installed legitimate apps with its own version without the user knowing. This lead the researchers to name the malware “Agent Smith” because its behavior is similar to the character in the film The Matrix of the same name.
The malware first appeared in popular third-party app store 9Apps and targeted mostly Indian, Pakistani and Bangladeshi users. However, of the 25 million affected devices, 303,000 infections were detected in the US, and 137,000 in the UK.
Apps that were modified include WhatsApp, Opera Mini, Flipkart, as well as software from Lenovo and Swiftkey. The malware detected which apps were installed, patched them with a malicious ads modules, and then re-installed them on the device. For the user, it simply looks like the app is being updated as expected. Once the update is complete, the owner of the malware can then profit from the newly included ads.
Check Point believes the same malware could also be used for more malicious purposes such as credit card theft, with the company’s report stating, “due to [the malware’s] ability to hide its icon from the launcher and impersonates any popular existing apps on a device, there are endless possibilities for this sort of malware to harm a user’s device.”
The security firm says they submitted data to Google and law enforcement agencies, and as of publishing no malicious apps remain on the Play Store. Nevertheless, the malware managed to survive for as long as it did because, despite the original vulnerability Agent Smith was based on being patched in Android years ago, developers did not sufficiently update their applications.
Malware like this, “requires attention and action from system developers, device manufacturers, app developers, and users, so that vulnerability fixes are patched, distributed, adopted and installed in time,” Check Point says.
This article originally published at PCMag
here
The greatest Apple deals ahead of Black Friday sourced from an Apple deals expert
I tried to make Samsung’s Sketch to Image AI tool show me boobs
Acer Chromebook Plus Spin 714 review
How to identify AI-generated videos
25 greatest sci-fi films on Hulu that you can watch right now
Menendez brothers case reignites online: The questions that keep resurfacing
‘A Real Pain’ review: Jesse Eisenberg and Kieran Culkin charm as odd-couple cousins
Halloween 2024: Weekend debates, obscure memes, and a legacy of racism
Is ‘The Substance’ streaming? How to watch at home
M4 MacBook Pro vs. M3 MacBook Pro: What are the differences?
The 3 greatest October Prime Day robot vacuum deals — according to an expert
New to streaming, ranked (October 11, 2024)
‘Blitz’ review: Steve McQueen’s World War II epic dazzles but ultimately disappoints
Huge NASA spacecraft is flying to a perilous part of the solar system
Elon Musk’s Community Notes: What to know about X users fact-checking him
October Prime Day: Shop the greatest deals from Amazon, Apple, Garmin, LG, and more
Prime Day vs. Black Friday: Which sales are better?
How to watch ‘Beetlejuice Beetlejuice’ at home: Release date, streaming deals, and more
Who is Natalie Nunn? The star behind viral ‘Baddies, pose for me’ TikTok song
Amazon Prime Day: Shop the 300+ of the greatest deals from Amazon, Apple, Garmin, LG, and more
The greatest Apple deals ahead of Black Friday sourced from an Apple deals expert
I tried to make Samsung’s Sketch to Image AI tool show me boobs
Acer Chromebook Plus Spin 714 review
How to identify AI-generated videos
25 greatest sci-fi films on Hulu that you can watch right now
Menendez brothers case reignites online: The questions that keep resurfacing
‘A Real Pain’ review: Jesse Eisenberg and Kieran Culkin charm as odd-couple cousins
Halloween 2024: Weekend debates, obscure memes, and a legacy of racism
Is ‘The Substance’ streaming? How to watch at home
M4 MacBook Pro vs. M3 MacBook Pro: What are the differences?
-
Entertainment7 days ago‘Only Murders in the Building’ Season 4 ending explained: Who killed Sazz and why?
-
Entertainment6 days agoWhen will we have 2024 election results online?
-
Entertainment5 days agoHalloween 2024: Weekend debates, obscure memes, and a legacy of racism
-
Entertainment6 days agoSocial media drives toxic fandom. Is there a solution?
-
Entertainment5 days agoIs ‘The Substance’ streaming? How to watch at home
-
Entertainment5 days agoM4 MacBook Pro vs. M3 MacBook Pro: What are the differences?
-
Entertainment3 days agoMenendez brothers case reignites online: The questions that keep resurfacing
-
Entertainment4 days ago‘A Real Pain’ review: Jesse Eisenberg and Kieran Culkin charm as odd-couple cousins
