Android malware keeps getting smarter and more difficult to identify

Oct 25, 2011 09:00 GMT  ·  By

A legitimate looking Android application requests the user permission to update and if the internet access is granted, it downloads an information-stealing trojan.

F-Secure researchers discovered Trojan:Android/DroidKungFu on a device right after a malicious-code-free app required an update.

This is not the first malevolent element of this kind, back in July Spyware:Android/SndApps being identified to operate in the same way.

The new mobile trojan is currently being analyzed by the security experts as they're not certain if the initial piece of software was really intended to be a downloader or it's just a compromised app.

The unfortunate thing about these types of threats is that in most cases a smartphone owner will not pay much attention to the update of an application that's already installed on the device.