Just read this little article that was released last week,kinda interesting..check it out..
original link--> http://news.drweb.com/show/?i=3191
New Trojan for Android can mount DDoS attacks
December 26, 2012
The Russian anti-virus vendor Doctor Web warns Internet users about a new malicious program for Android. TheAndroid.DDoS.1.origin can carry out DDoS-attacks on various internet resources and send short messages upon a corresponding command from criminals.
After installation, Android.DDoS.1.origin creates an application icon, similar to that of Google Play. If the user decides to use the fake icon to access Google Play, the original application will be launched, which significantly reduces the risk of any suspicion.
When launched, the Trojan tries to connect to a remote server and, if successful, it transmits the phone number of the compromised device to criminals and then waits for further SMS commands. Supported directives include attack a specified server and send SMS. If criminals want the Trojan to attack a server, a command message will contain the parameter [serverort]. Upon receipt of such a command Android.DDoS.1.origin starts to send data packets at the specified address. If the malicious program is required to send an SMS, the command message will contain the message text and the number to which it should be sent. Activities of the Trojan can lower performance of the infected handset and affect the well-being of its owner, as access to the Internet and SMS are chargeable services. Should the device send messages to premium numbers, malicious activities will cost the user even more.
It is not quite clear yet how the Trojan spreads but most probably criminals employ social engineering tricks and disguise the malware as a legitimate application from Google.
It is worth noting that the code of Android.DDoS.1.origin is heavily obfuscated. Given that the Trojan can carry out attacks on web sites and send various text messages to any number, including those of content providers, we can assume that the malware can also be used to conduct illegal activities for third parties (e.g, attack a competitor's site, promote products with SMS or subscribe users to chargeable services by sending SMS to short numbers).
Doctor Web's virus analysts continue to examine Android.DDoS.1.origin. Devices running Dr.Web products for Android are well protected from this Trojan.
Edit: Nvm, I was being a grammar Nazi.
is there anyone here who thought a virus couldn't attack a phone?
theraker007 said:
is there anyone here who thought a virus couldn't attack a phone?
Click to expand...
Click to collapse
I didnt think it "couldn't" I just thought it was less common
Sent from my SAMSUNG-SGH-I317 using Tapatalk 2
Ya its kind of a similar thing to the whole "Macs cant get viruses thing" its not that its immune its just that no one bothered to make one. And it still seems like the traditional "antiviruses for android" still do nothing considering that it is more relying on the user to do something stupid rather than an exploit
I think if you have any common sense you will never have problems with viruses.
NightHawkUndead said:
I think if you have any common sense you will never have problems with viruses.
Click to expand...
Click to collapse
I would have to agree with that:thumbup:
Sent from my SAMSUNG-SGH-I317 using Tapatalk 2
Ever heard of Anti Virus companies making their own virus (or a myth to scare people) to increase their product sales?
NightHawkUndead said:
I think if you have any common sense you will never have problems with viruses.
Click to expand...
Click to collapse
there seems to be a lack of that now a days..
Does anyone actually run an antivirus on their phone? I just worried about it hampering my Note 2's performance.
roligov said:
Does anyone actually run an antivirus on their phone? I just worried about it hampering my Note 2's performance.
Click to expand...
Click to collapse
AVAST seems to work great on both my GN2 and my PC
roligov said:
Does anyone actually run an antivirus on their phone? I just worried about it hampering my Note 2's performance.
Click to expand...
Click to collapse
Avast is on my Note 2 now, but I don't think it affects to my phone performance much.
ElpeePhablet said:
Avast is on my Note 2 now, but I don't think it affects to my phone performance much.
Click to expand...
Click to collapse
And it still does its job
Sent from my SAMSUNG-SGH-I317
roligov said:
Does anyone actually run an antivirus on their phone? I just worried about it hampering my Note 2's performance.
Click to expand...
Click to collapse
I run A/V on my phone, because having corporate e-mail on my phone requires me to.
wish777 said:
Devices running Dr.Web products for Android are well protected from this Trojan.
Click to expand...
Click to collapse
I can tell you where this virus came from
Sent from my SGH-I317M using Tapatalk 2
I actually think it is strange that you don't see this more often, android being now close to the Standard in Mobile OS there should be lots of viruses going around, the reason there are so many viruses for PC is because of how commonly this OS is used, android development is open source and that should enable a HUGE amount of virus being developed.
That being said, the operating system is based on Linux, and there are not many Linux viruses out there either.
roligov said:
Does anyone actually run an antivirus on their phone? I just worried about it hampering my Note 2's performance.
Click to expand...
Click to collapse
Yes, I run avast. Don't know about performance decrease but it's just there in case.
Sent from my SGH-I317 using xda app-developers app
Avast is a bit of a hog on older devices. I'd say it was a 5 - 10 percent performance decrease on my rooted / overclocked Desire HD. Any performance decrease is imperceptible on my stock Note II. I ran it then and run it now.
Sent from my SGH-I317M using xda premium
Related
Hello everyone,
Im an IT guy for the company i work for and my boss the exchange admin is looking at some software to secure android phones. (Rooted ones) He found this software called (air-watch). http://www.air-watch.com/platforms/android/index.html Can someone smarter them me take a look and see if this means the end for all of us with rooted phones in the company. Im not sure how rooting phones affects how they are seen from exchange but i love my Roms and wifi teather
sgtagem said:
Hello everyone,
Im an IT guy for the company i work for and my boss the exchange admin is looking at some software to secure android phones. (Rooted ones) He found this software called (air-watch). http://www.air-watch.com/platforms/android/index.html Can someone smarter them me take a look and see if this means the end for all of us with rooted phones in the company. Im not sure how rooting phones affects how they are seen from exchange but i love my Roms and wifi teather
Click to expand...
Click to collapse
Looking at how the software has functionality to push policies and restrict usage of apps I'd say it would definitely allow them to micromanage the phones. But then again, as an IT guy I'd guess you wouldn't be happy if one of your users decided they wanted to blow away whatever OS you installed on a PC and put Ubuntu on it.
Im just hoping that it will not prevent a phone that is rooted from connecting to exchange. I really love wireless teather lol
That would require a tremondous amount of intelligence on the part of the system. I think this is more for 'allow only people who work for me to access the site' and everyone else should be denied.
sgtagem said:
Im just hoping that it will not prevent a phone that is rooted from connecting to exchange. I really love wireless teather lol
Click to expand...
Click to collapse
Since this is in the Incredible forum I'm assuming you have an Incredible, in which case you dont need to be rooted to wireless tether...just FYI if your boss cracks down.
Google "HTC tether natively" and I'm sure it will pop
I read thru the site from the link.
Looks like through air-watch they'd have full admin access to device.
Question is whether the air-watch admin would 'blacklist' the superuser and/or tethering app(s).
Unlikely, imho, whether an astute IT person and/or admin of this system would allow a superuser app on devices that connect to company assets, but stranger things have happened.
Another thing i like is the root unistaller/ set cpu and custom roms. but thats another battle haha
Plus if you try to wipe the phone and install the new ROM, I am sure the Boss is going to have a few words with whoever did it.
Besides, it's not their phone, it's the company's phone. They can do what they want with it.
I work for a company in the top 20 of the fortune 500..we're looking at allowing employees to bring their own devices into our exchange servers but the catch is how to remote wipe them..they are looking at how to deal with rooted devices. I'm not privy to how they are working that out.
RXWatcher said:
I work for a company in the top 20 of the fortune 500..we're looking at allowing employees to bring their own devices into our exchange servers but the catch is how to remote wipe them..they are looking at how to deal with rooted devices. I'm not privy to how they are working that out.
Click to expand...
Click to collapse
Thats what we are trying to do. my boss is afraid of a rooted droid bringing in some virus/malware in and he would also like to force things like screen lock pin codes. I dont see how a rooted phone would bring that stuff in anymore then a stock one but forcing a security policy would stop someone from stealing data from it rooted or not i would think
The fact that it is rooted does not make it any more likely to get a virus then an unrooted phone. Almost all android phones have the ability to install apps from the SD card and that is where a virus won't come from, not the ROM you happen to be using.
However, the installation of this could put your phone in shackles. In addition to the possibility of restricting what you can install, such as games, it could kill your ability to connect to wifi hotspots that are unknown to your company, they could can wipe your phone at a moments notice and track your location without your knowledge.
That way if you call in sick, your boss can find out if you are really at the game or home in bed.
In any case, if this is a work phone then you don't have much choice but if this is your personal phone, I would try to stay clear of it.
Very nice answer. Im the one who has to implement it so i can always exclude myself from the devices that are being watched. The call in sick thing is an awsome yet crappy thing lol
sgtagem said:
Very nice answer. Im the one who has to implement it so i can always exclude myself from the devices that are being watched. The call in sick thing is an awsome yet crappy thing lol
Click to expand...
Click to collapse
Simple solution to "call in sick " concern : Turn Off The Phone.
Sent from my ADR6300 using XDA App
cam30era said:
Simple solution to "call in sick " concern : Turn Off The Phone.
Sent from my ADR6300 using XDA App
Click to expand...
Click to collapse
Or leave it at home and enjoy the game. Less suspicious if the phone is on and at home than off and lord knows where.
HTC Incredible
My employer is extremely security aware, and they are considering using an app named "Good." It partitions the Exchange data in an encrypted folder and allow that folder to be remotely wiped. Accessing the data is only available through the app, which is PIN protected.
This may be a better solution to your boss... and you.
This is what they have told me, I have not used it yet, and I am an amatuer at best when it comes to IM/IT. They were amazed and very concerned when they became aware that rooting and installing a custom ROM was easy enough that I could successfully do it...
Glad my employer hasn't learned how to do remote wipes on Droid phones since it would be end of many of us that hate iPhones. 75% of our staff use Droid phones and 50% of us have our phone rooted.
JohnKuczek said:
My employer is extremely security aware, and they are considering using an app named "Good." It partitions the Exchange data in an encrypted folder and allow that folder to be remotely wiped. Accessing the data is only available through the app, which is PIN protected.
This may be a better solution to your boss... and you.
This is what they have told me, I have not used it yet, and I am an amatuer at best when it comes to IM/IT. They were amazed and very concerned when they became aware that rooting and installing a custom ROM was easy enough that I could successfully do it...
Click to expand...
Click to collapse
That sounds like a perfect solution. where can i find that app? is there a website or something
sgtagem said:
That sounds like a perfect solution. where can i find that app? is there a website or something
Click to expand...
Click to collapse
It is in the Market. The full name is "Good for Enterprise" and the dev is listed as "Good Technology"
Policy for personal phones
Our company finally decided to allow personal phones to be connected to exchange. The phone just has to be compatible with accepting exchange policy, and we had to sign a company form stating that we are ok with them wiping our data if the situation arose.
JohnKuczek said:
It is in the Market. The full name is "Good for Enterprise" and the dev is listed as "Good Technology"
Click to expand...
Click to collapse
that software looks alot better then the air-watch. seems alot more direct rather then locking down the whole phone lock the exchange info. Im gonna pitch that to my boss. I bet its alot cheeper too
Avast anti virus has been released, however my question is, that is this anti virus really necessary, as I have been using android for a while without any need for anti virus so seriously questioning the need to have this so very much value your input those with knowledge regarding the reasons to have this please.
https://market.android.com/details?id=com.avast.android.mobilesecurity
Ive never had a problem without one, just be careful what you download and no porn lol
Sent from my GT-I9100 using xda premium
Android is only 2ND to windows for malware, so it's really your choice.
I've been running it for a week or two and it's quite good. I'd rather have an anti virus and not need it, rather than waiting for my phone to get raped by rogue apps then need one.
It also scans and tells you permissions apps use, I had a flash light app that had access to my dialer, and location. Dodgy Dev must have adjusted the permissions in the update.
You can also see what's preventing your phone from sleeping which will help battery life.
Hope this helps.
Will try it out, thanks!
Note its not just a antivirus but a whole protection package with tracking and more. ;-)
It's the NEW TheftAware and yes it's a full protection package, you can turn off the antivirus if you don't want it.
Sent from my GT-I9100 using xda premium
Looks pretty good, as for how useful it really is who knows, is to early to tell. Hopefully it's not going to be a battery killer either...
Sent from my GT-I9100 using Tapatalk
kersey said:
Looks pretty good, as for how useful it really is who knows, is to early to tell. Hopefully it's not going to be a battery killer either...
Sent from my GT-I9100 using Tapatalk
Click to expand...
Click to collapse
That's what im a bit wary of too, i use Lookout mobile security and the wakelocks are minimal and it does the job nicely although avast are proven to be top class in Windows anyway so ill definitely be keeping an eye on this.
Can someone who downloads and uses this please report back.
Thanks
jonny68 said:
That's what im a bit wary of too, i use Lookout mobile security and the wakelocks are minimal and it does the job nicely although avast are proven to be top class in Windows anyway so ill definitely be keeping an eye on this.
Can someone who downloads and uses this please report back.
Thanks
Click to expand...
Click to collapse
Been using for 2 weeks now its not hard on the system does what is said on the tin...
Also there has bee a thread posted on this already...
Why using and anti virus? The only way to be safe is using common sense and be careful while browsing...
MobileTrackerEngineTwo.apk ???
I have a vibrant and didn't want to create a whole knew Avast thread. Hoping maybe you guys in this forum know.
Searching my sdcard for Viruses it found 1 problem app named MobileTrackerEngineTwo.apk
I've only installed apps from Amazon market and Android Market, so I'm kind of perplexed what this mobiletrackerenginetwo.apk is.
Any clue what that is?
PedroMRP said:
Why using and anti virus? The only way to be safe is using common sense and be careful while browsing...
Click to expand...
Click to collapse
This
ten characters
It has firewall too. I think is necessary the firewall because i had scanned the ports and found 2 ports open by default.
Been using this for a few weeks now. Very impressive. Love the integration with CWM. I don't really use it for the anti-virus capability, just the anti-theft and SMS firewall protection.
whos using security software and why?
my brother got a N7 (his first android product) and he's all freaked out by the permissions some apps want. i explained that while they seem intrusive, most of them are just trying to access the necessary functions they need to run properly, not stealing your info to send elsewhere..
enlighten me.
jewnersey said:
whos using security software and why?
my brother got a N7 (his first android product) and he's all freaked out by the permissions some apps want. i explained that while they seem intrusive, most of them are just trying to access the necessary functions they need to run properly, not stealing your info to send elsewhere..
enlighten me.
Click to expand...
Click to collapse
Security is highly unecessary. As long as your downloading from a trusted source.. if the developer has terrible ratings and its only been downloaded 50 times.. and its some type of porn app.. its gunna be malware. Really just have to use common sense here. If hes seriously concerned or paranoid i would suggest using LBE Security Guard it will monitor the apps that request permissions to things and actively tell you what app is doing what. With Root it will let you remove permissions to certain apps, lets say you dont want angry birds to have access to the internet.. you can do that. It will also rid those stupid ads.
All in all IMO its not needed but if hes that paranoid... LBE will be the best bet. Oh and any type of Anti-Virus is a waste of space and RAM.. at least LBE is useful.
tell him to stop the Windows mentality.
tell him to be cautious with regard to the hyperbole fearmongering that the security industry puts out to scare people into giving them money.
tell him my favorite saying... "paranoia will destroia"
Sent from my Nexus 7 using XDA Premium HD app
Picked up my nexus today, and the shop assistant was trying his hardest to sell me norton for £30 told him to jog on lol
There is no need for anti virus unless your downloading lots of dodgy or cracked apk's
I use avast on my n7 just on the off chance but I'm confident what I download and the web pages I visit are safe.
Its better to have protection and not need it than not have protection and need it imo.
Sent from my Nexus 7 using xda app-developers app
UXB-67 said:
Picked up my nexus today, and the shop assistant was trying his hardest to sell me norton for £30 told him to jog on lol
There is no need for anti virus unless your downloading lots of dodgy or cracked apk's
Click to expand...
Click to collapse
Holy cow.. I thought I was reading satire for a second so I ran to the Play Store and searched for Norton.. IT'S REAL. EL-OH-EL.. WOW and 46k people gave it 5 *'s.. *SMH*.... I laughed when I saw Avast and saw it needs root access to install some firewall crap.. Ironic much???
Anyway.. Yeah.. Security on a phone is really unnecessary. If you are dumb enough to download digital snake oil then you deserve a hard lesson in watching what you download.. Most of the scammy stuff is so blatantly obvious.
I used to use Lookout Mobile Security but then I was like..... no. They're all RAM hogs, and unless you know what you're downloading (I do) then it's a complete waste.
Some malware has made it into the Play store...but I generally only download well known apps from reliable vendors.
Sent from my Nexus 7 using Tapatalk 2
Thanks for the replies
Bitdefender use it n my PC / Phone aswell
Sent From Nexus 7 XDA Premium HD App
http://www.engadget.com/2012/11/25/samsung-galaxy-note-ii-5-million-sold/
I hope T-Mobile gets the official multi-view update asap..
I've definitely helped that figure along. On my 3rd Note II.
I broke the glass on the first.
Second one was stolen last night.
No insurance on either. Finally got insurance on this third.
My wallet hurts.
funkeee said:
I've definitely helped that figure along. On my 3rd Note II.
I broke the glass on the first.
Second one was stolen last night.
No insurance on either. Finally got insurance on this third.
My wallet hurts.
Click to expand...
Click to collapse
You don't need insurance, you need super glue.
Sent from my SGH-T889 using xda app-developers app
funkeee said:
I've definitely helped that figure along. On my 3rd Note II.
I broke the glass on the first.
Second one was stolen last night.
No insurance on either. Finally got insurance on this third.
My wallet hurts.
Click to expand...
Click to collapse
Damn dude. That hurt me reading that
From the Best: Note 2
funkeee said:
I've definitely helped that figure along. On my 3rd Note II.
I broke the glass on the first.
Second one was stolen last night.
No insurance on either. Finally got insurance on this third.
My wallet hurts.
Click to expand...
Click to collapse
Sorry to hear about that..before it was stolen had you set up tracking like Lookout or AVG etc? Any apps people prefer lately over Lookout-AVG for tracking? https://play.google.com/store/search?q=track+stolen+phone&c=apps
I'm not a fan of Apple's general walled garden approach but Apple did have PIN device passwords before Android & Find my iPhone has been a standard free option upon iOS device setup for some time. Does the latest Android setup (if they want serious business consideration) offer standard find device yet upon setup or still require post setup 3rd party apps?
-Thnx
Also, Where's my droid is a great app, allows you to turn on gps, cameras, lock the device, sends a notification if the sim card is changed or has a new number, wipe phone, etc, all remotely from pc or another device.
Sent from my SGH-T889 using xda premium
SMARTPHONEPC said:
Sorry to hear about that..before it was stolen had you set up tracking like Lookout or AVG etc? Any apps people prefer lately over Lookout-AVG for tracking? https://play.google.com/store/search?q=track+stolen+phone&c=apps
I'm not a fan of Apple's general walled garden approach but Apple did have PIN device passwords before Android & Find my iPhone has been a standard free option upon iOS device setup for some time. Does the latest Android setup (if they want serious business consideration) offer standard find device yet upon setup or still require post setup 3rd party apps?
-Thnx
Click to expand...
Click to collapse
Avast for Root is probably the best I have used yet very advanced features.
It enables you to run commands via Remote access from a friends "authorized" phone. Meaning You can perform a factory wipe and all sorts of stuff via text message Commands to the lost or stolen phone.
way bEtter than Lookout Lol
Sent from my SGH-T889 using Tapatalk 2
ssCISengineer said:
Avast for Root is probably the best I have used yet very advanced features.
It enables you to run commands via Remote access from a friends "authorized" phone. Meaning You can perform a factory wipe and all sorts of stuff via text message Commands to the lost or stolen phone.
way bEtter than Lookout Lol
Sent from my SGH-T889 using Tapatalk 2
Click to expand...
Click to collapse
Free Lookout is better than nothing, anyone try AVG free for this?
Not everyone is rooted but I'm more seriously considering it if unrooting is easy..
I also tried Where's my Droid when many features were in Beta & ultimately uninstalled it but I could try it again as it looks more evolved now..
Not sure how accurate & unbiased the following is coming from http://www.mobiucare.com/about/comparision
https://play.google.com/store/apps/details?id=com.mobiucare.client
HTC introduced a Find Device some time ago, did Samsung?
Does the latest Android setup (if they want serious business consideration) offer standard find device yet upon setup or still require post setup 3rd party apps?
What are people using on their Note2 as a remote device locator-controller etc?
- We want Samsung to sell Note2's but not because devices are lost or stolen.. -Thnx
So i was just going trough some poss on the internet and found this ! was interested and a bit worried ! laughed a bit and cried a bit
thought i'll start up nice good conversation so m just sharing it here
http://www.forbes.com/sites/andygre...nes-data-by-chilling-its-memory-in-a-freezer/
For all you lazy folks this is the main part
A pair of researchers at Erlangen University in Germany have shown that a trick known as a “cold boot attack” can read data from a Samsung Galaxy Nexus running the latest version of Android, even when the phone is protected by a PIN and has its storage disk encrypted. They call their technique FROST, or Forensic Recovery of Scrambled Telephones. By simply cooling the phone to around five degrees Fahrenheit and quickly rebooting it, Tilo Mueller and Michael Spreitzenbarth found they could read data from its memory including images, emails and web browsing history, as well as the key that in some cases allows them to decrypt the phone’s encrypted storage disk.
Click to expand...
Click to collapse
They wont find much worth having on mine.. a bunch of memes, a handful of music discogs, my contacts, a few sms messages that I haven't deleted yet.
I understand that these exploits have to be talked about, but at the same time they're sometimes talked about in such detail, anyone can easily replicate it.
On the other hand, I don't think the common thief would know about this security exploit. They'd probably just sell it as is.
Sent from my Galaxy Nexus using xda premium
Chilling news....
Sent from my Galaxy Nexus using xda premium
smtom said:
Chilling news....
Click to expand...
Click to collapse
Just hope it doesn't leave you in the cold....
shriom_manerker said:
So i was just going trough some poss on the internet and found this ! was interested and a bit worried ! laughed a bit and cried a bit
thought i'll start up nice good conversation so m just sharing it here
http://www.forbes.com/sites/andygre...nes-data-by-chilling-its-memory-in-a-freezer/
For all you lazy folks this is the main part
Click to expand...
Click to collapse
That's not an exploit nor really news. They could have pointed out any electronic device with RAM chips, this technique is used for years for PCs.
But writing about mobile + Android + security is linkbaity enough for 2013.
Yeah, and how many people are gonna be like OMG I just got this phone now I gotta get the temp down so I can hax it?
Not really an exploit like said above.