Trojans target Android

There has been a recent upsurge in malware targeting the Android mobile computing platform, according to security software maker Symantec.

Symantec says the Android Trojan is spreading via altered versions of legitimate apps hosted on unregulated third-party marketplaces.

“Android.Pjapps masquerades as a popular 'Steamy Window' app,” says Symantec. 'Steamy Window' simulates steam condensing on the phone screen.

“The legitimate features of the original app are still present in the malicious version, but it also features additional functionality that allows an attacker to build a botnet.”

Among other things, it is able to install applications, navigate to Web sites, add bookmarks to the user's browser, send text messages and block text message responses. According to Symantec, it also sends sensitive user information back to the attacker.

This new Trojan follows two other high-profile Android-based malware attacks that took place in the last month, namely the HongTouTou and Gemini Trojans.

There have also been reports this week of Android being targeted by two new spyware programmes, SW.SecurePhone and SW.Quieting. These programmes are said to collect all the data saved on the phone's SD card - which could lead to serious data compromises.

Assessing the new threat's capabilities, Symantec believes the Trojan has been designed and may be used to peddle ad campaigns and to obtain benefits from the use of third-party premium rate services at users' expense.

In order to avoid becoming a victim of Trojanised Android applications, Symantec advises users to only use regulated Android marketplaces for downloading and installing apps. It is also advises that users should adjust their Android OS application settings to stop the installation of non-market apps.

“Reviewing other users' comments on the marketplace before downloading an app can also assist in determining if an app is safe,” says Symantec.

During the installation, one should also check the access permissions being requested. “If they seem excessive for what the application is designed to do, it would be wise to not install the application.”

Symantec also recommends the use of a mobile security solution, and urges enterprises to consider implementing a mobile management solution to ensure all devices connected to their networks are policy-compliant and free of malware.