On Tuesday, a new Android Malware found by Trend Micro codenamed “Godless“, was discovered by the security team, who posted a blog explaining their findings.
This new type of malware has been found in legitimate-looking apps that can “root” your phone and secretly install unwanted programs.
Godless has been found lurking on app stores including Google Play, and is mainly targeting devices running Android 5.1 (Lollipop) and earlier, which accounts for around 90% of Android devices.
Godless hides inside an app and uses exploits to try to root the OS on your phone. This can essentially create admin access to a device, allowing unauthorized apps to be installed, not to mention opening more doors to extreme control over your device.
we came across a new Godless variant that is made to only fetch the exploit and the payload from a remote command and control (C&C) server, hxxp://market[.]moboplay[.]com/softs[.]ashx. We believe that this routine is done so that the malware can bypass security checks done by app stores, such as Google Play.
Trend Micro said they found various apps in Google Play that contain the malicious code.
The malicious apps we’ve seen that have this new remote routine range from utility apps like flashlights and Wi-Fi apps, to copies of popular games.
The company said.
According to data collected by Trend Micro, over 850,000 devices worldwide are affected.
The affected areas can be summarized by the Chart below:
When downloading apps, users should always review the developer. Unknown developers with very little or no background information may be a source of malicious apps. And as a general rule, it is always best to download apps from trusted stores, mainly Google Play.
Our final advise is to indeed get Security for your Mobile.
We recommend Norton Security Premium for your PC & Mobile Devices. Of course you can also use the standalone “Mobile Security” app by Symantec.
Unfortunately still, in comparison to PC’s, Mobile is much harder to support with Security but Security companies are putting effort into making the best apps to help secure your phone. Regardless, you should do all you can to protect yourself.
Google Android getting the decision of being Open Source has been the biggest risk to users with the amount of control you have over your device. It is amazing to mod your phone to almost unlimited heights, but you are exposed to serious malware that hackers and such will be more than happy to exploit wherever they can.
If you can, upgrade to Marshmallow.