Android 'Bootkit' Malware On Rise, Especially In China - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Mobile // Mobile Devices
News
7/24/2012
06:29 PM
Connect Directly
Twitter
Facebook
Google+
LinkedIn
RSS
E-Mail
50%
50%

Android 'Bootkit' Malware On Rise, Especially In China

The latest quarterly threat report from security company AVG reaffirms existing trends in the growth of Android malware, but notes a new type of threat increasing in the wild: "bootkits".

Security company AVG has released its latest quarterly threat report, and the mobile findings overwhelmingly involve Android.

Malware on other mobile platforms is exceedingly rare, but on Android it is becoming common. The most interesting news from the report, which AVG bases on threats encountered by its anti-virus software on customers' computers, is the rise of "bootkits." Bootkits are analogous to rootkits on desktop computers. Android is based on a pared-down Linux kernel. A bootkit is a program that modifies and injects itself into that kernel. The malicious code therefore is always running on the phone; the user doesn't have to load an app. Like a rootkit it can do almost anything it wants, including intercepting information being sent from the operating system to apps and modifying it. It could, for example, change the numbers being displayed by your bank app.

Android bootkits aren't that sophisticated yet. AVG says that attacks still consist mostly of using premium SMS numbers to make money for the attackers. The numbers of such attacks are increasing, though, and are now increasingly based on more powerful techniques, such as the bootkit, which enable more sophisticated exploits.

The other big but not surprising news is the continued geographical concentration of Android malware in China and other far-eastern countries. Third-party app stores are more popular in these countries and malware has made its way into these stores more easily than it has in the official Google Play store.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
Commentary
What Becomes of CFOs During Digital Transformation?
Joao-Pierre S. Ruth, Senior Writer,  2/4/2020
News
Fighting the Coronavirus with Analytics and GIS
Jessica Davis, Senior Editor, Enterprise Apps,  2/3/2020
Slideshows
IT Careers: 10 Job Skills in High Demand This Year
Cynthia Harvey, Freelance Journalist, InformationWeek,  2/3/2020
White Papers
Register for InformationWeek Newsletters
Video
Current Issue
IT 2020: A Look Ahead
Are you ready for the critical changes that will occur in 2020? We've compiled editor insights from the best of our network (Dark Reading, Data Center Knowledge, InformationWeek, ITPro Today and Network Computing) to deliver to you a look at the trends, technologies, and threats that are emerging in the coming year. Download it today!
Slideshows
Flash Poll