14 DAY TRIAL // Cybercriminals have already started developing malicious applications by leveraging the “master key” vulnerability in Android.
After Symantec and Trend Micro, now Sophos has come across some malicious applications. They’ve analyzed three files.
Two of them – which are designed to collect data on installed applications, SMSs and IMSI numbers, and send SMSs to a list of numbers in China – don’t work because the modifications made by the cybercriminals have invalidated the APK.
However, the third sample, which purports to be an add-on called “Fashion” for picture-based messaging application Lexin, does work. It steals data and sends out SMSs from the infected devices.
Experts advise users to protect themselves against such malicious apps by downloading applications only from Google Play.
Currently, most mobile antiviruses have been updated to detect apps that exploit the “master key” vulnerability, so installing a security application is highly recommended.
If your Android phone is rooted, you can try Duo Security’s ReKey, which fixes the vulnerability.