PhoneArena is looking for new authors! To view all available positions, click here.

Phone Links

more » more »
  • Home
  • News
  • Android malware compromising Yahoo! accounts discovered by Microsoft anti-spam expert

Android malware compromising Yahoo! accounts discovered by Microsoft anti-spam expert

Posted: , by Nick T.

Categories:

Share:

Discuss 14
Android malware compromising Yahoo! accounts discovered by Microsoft anti-spam expert
The latest assortment of Android malware has been discovered by Terry Zink, who is an anti-spam expert at Microsoft. He managed to identify a series of bogus e-mail messages (read: spam) that have been all sent from compromised Yahoo! accounts on Android handsets. That was not too hard for him to figure out after analyzing pieces of code within those emails, and besides, all messages contained the following string at the end: "Sent from Yahoo! Mail on Android".

The infection that we are dealing with is called a botnet. Basically, the malicious code grants a hacker with enough access to the user's account to send spam to unassuming victims. Further digging showed that the majority of that spam comes from users in Chile, Indonesia, Lebanon, Oman, Philippines, Russia, Saudi Arabia, Thailand, Ukraine, and Venezuela. There is no word as to which version of Android these users were running.

But what allowed for this infection to spread at all? That is not too easy of a question to answer, but it is speculated that the malicious code came along with a copy of a paid application that these users obtained from an unauthorized source. In other words, pirated apps that have not been downloaded from the Google Play store.  

So yeah, one more reason to be careful where you get your apps from. If you want to learn how to protect yourself and your device from malware, we have a pretty good guide available right here.

source: MSDN via The Verge

Share:

Discuss14

14 Comments

  • Options
    Close




Want to comment? Please login or register.

1. thedarkside posted on 05 Jul 2012, 09:24 2 2

no bueno.

Reply

2. plgladio posted on 05 Jul 2012, 09:48 2

Pirate app and how to avoid the damage...
If its a bug in Android core, Google should identify this and fixes it soon will be good.

Reply

3. MorePhonesThanNeeded posted on 05 Jul 2012, 11:26 1

Why is this stuff news, you get stuff not from the official source and you end up with all types of crap, why would you want to blame the OS or point fingers. Check out Windows IE if you want to see malicious code and bugs and trojans and viruses...basically started and incubated on the Windows platform. Why is it is always some sort of finger pointing done. That sent from strong can be done on any smartphone including ones using WP7, utter trash.

Reply

4. Stuntman posted on 05 Jul 2012, 11:50

I guess this particular piece of malware won't affect me since I cannot install apps from unofficial sources on my phone.

Reply

5. TheRetroReplay posted on 05 Jul 2012, 11:51

I'm not surprised to see Yahoo!'s name attached to this, they've become the kings of spam and phishing emails.

Reply

6. networkdood posted on 05 Jul 2012, 13:37

THIS JUST IN!!

http://www.techweekeurope.co.uk/news/malware-apple-app-store-security-85234

ok, now a Microsft employeee talking about malware? That is Hi-larious.

I have never seen or found malware any phone I have owned - Windows or Android.
I understand it could exist.
I doubt this has to do with Android as it has more to do with Yahoo!
Luckily, if it is an Android issue via the Yahoo mail app, I have my Yahoo mail forwarded to my gmail.
The military uses Android or will start soon...hmmm, wonder why?

Reply

7. networkdood posted on 05 Jul 2012, 13:48

'The infection that we are dealing with is called a botnet. Basically, the malicious code grants a hacker with enough access to the user's account to send spam to unassuming victims'

ok, actually, you can find this on facebook. So, it really has zilch to do with Android. Clicking on stuff from unknown assailants or being unsure on what you are clicking on?

Then just do not click it.

Reply

8. c.hack posted on 05 Jul 2012, 14:20 2 4

Not surprising for an unstable and insecure OS like Android. If only they had done more than rip off iOS and built in some security.

Reply

13. maxican16 posted on 06 Jul 2012, 09:15

Troll harder.

http://blogs.wsj.com/digits/2012/07/05/security-researchers-backtrack-on-android-malware-claim/

Reply

9. Roomaku posted on 05 Jul 2012, 15:37

Yahoo mail? What is that???? JK well that' what you get for still using yahoo

Reply

10. DigitalMD posted on 05 Jul 2012, 15:49 1

Since the comments in the article are all speculation, the source could just as easily have been a paid or free app sourced from the real Google play market. Or a bug in IOS that polluted nearby sweet and innocent Android handsets.

Reply

11. parkwaydr posted on 05 Jul 2012, 18:57 1

I said it before and ill say it again, I will not believe anything negative about Android if it.comes from Microsoft.

I'm not accusing them, but they have motivation to try and scare people away from android.

That being said, anyone who downloads apps from unknown sources is asking for a problem, Google play people Google play.

Reply

12. maxican16 posted on 06 Jul 2012, 09:15

Your instincts are correct! Thank you for using your own analytical skills ;)

http://blogs.wsj.com/digits/2012/07/05/security-researchers-backtrack-on-android-malware-claim/

Reply

14. khiko posted on 06 Jul 2012, 21:33 2

i think android really s_cks! lol

Reply

Want to comment? Please login or register.

Hot Phones

  • Samsung Galaxy S4Samsung Galaxy S4
  • Apple iPhone 5Apple iPhone 5
  • Samsung GALAXY Note IISamsung GALAXY Note II
  • HTC OneHTC One
  • Sony Xperia ZSony Xperia Z
  • Google Nexus 4Google Nexus 4
  • LG Optimus GLG Optimus G
  • Nokia Lumia 920Nokia Lumia 920