Home » Cybersecurity » Data Security » 60,000 Android devices hit by battery-saving app attack

60,000 Android devices hit by battery-saving app attack

Computer security experts have discovered an unusual attack targeting users of Android devices.

As researchers Yonathan Klijnsma and Aaron Inness explain on the RIskIQ blog, the attack starts with a relatively pedestrian fake warning message that popped-up on some Android users’ devices as they browsed the web.

The warning message is customised to the specific device by grabbing the model number and brand of the Android phone that is being used, presumably in an attempt to dupe users that the advice they are reading is legitimate, rather than produced by a pop-up.

In the example shared by the researchers, the message is customised for the Samsung SM-G925A.

Samsung cleanup might be required!

Your Samsung SM-G925A might be slowed down and your battery may discharges quickly.

Please clean your Samsung memory to solve this problem and increase phone speed.

Install recommended app for FREE to clean your Samsung immediately!

Underneath the warning, the user is prompted to click either the Install or Cancel button. However, it makes no difference which option you choose as you will be taken to a page in the official Google Play store regardless.

You *could* press the back button in your browser, but you’ll only find yourself on the receiving end of yet more pressure to install the app that the fake warning is recommending.

So what happens if you do go to the Google Play store, and install the battery-saving app being touted by the fake warning?

The first thing that should ring alarm bells in you is that the app demands access to a disturbing array of permissions, including:

• Read sensitive log data
• Receive text messages (SMS)
• Receive data from Internet
• Pair with Bluetooth devices
• Full network access
• Modify system settings

I can’t think of any legitimate reason why a genuine battery-saving app (Read more...)