A nasty Android malware is spreading using Google's online ad network

Google | Aug 16, 2016 | Master3395

Watch out, Android users: Security researchers have discovered a nasty new piece of smartphone malware that targets users of Google's mobile operating system - and it uses Google's popular advertising network AdSense to do it.

It's a banking "trojan," which is designed to steal its victims' banking details. One way it does this is by creating phishing windows designed to dupe users into entering their details. It can also read and and delete text messages sent to users by their banks.

The worrying part is how it makes its way to the victim's phone. Researchers from security firm Kaspersky found that it is being distributed by AdSense - Google's huge advertising network which is used by countless companies and people to display ads on their websites. Ads that are powered by AdSense appear everywhere from tiny blogs to the websites of international news organisations (Kaspersky researchers saw it appear on RT, the state-owned Russian media company); it's the single biggest ad network in the world.

Google did not immediately respond to a request for comment.


The malware downloading itself via a Google AdSense advert on propaganda site Russia Today.

The malware, once installed, hides itself from the list of applications on the phone, making it harder to detect and remove. 

And, as well as stealing financial data, it also spies on the victim more generally: "Svpeng collects an impressive amount of information from the user's phone - the call history, text and multimedia messages, browser bookmarks and contacts,"Kaspersky researchers wrote in a blog post on Monday.

There are ways to avoid being infected. If users have their security settings set so their phone won't run apps from unknown sources, their devices won't be compromised. By default, Android won't run unknown apps - but it is sometimes necessary to change these settings (to install apps from third-party app stores, for example) - putting the phone at risk.

The malware appears to be specifically targeting Russian users, as it was designed to create phishing windows for a specific Russian bank. But it's still embarrassing for Google, and fuels the argument often made that online ad-blocking is sometimes necessary as a security measure to protect the user.

Ad networks used by media organisations have been caught accidentally delivering malware to readers before. Back in September 2015, for example, researchers found news site Forbes was accidentally delivering malware to users via malicious ads. The issue was subsequently resolved.

Keywords: google, android, malware

Author: Master3395


comments powered by Disqus

Page 1 of 375  >  >>

New Window Defender Extension Launches - Insecure Websites Open in Edge


Mar 19, 2019 | Category: General | Comments

Works in Chrome and Firefox.

read more…

Now the extensions have appeared - public testing is approaching


Mar 18, 2019 | Category: General | Comments

Found 82 extensions for new Edge.

As we interpret recently Microsoft's activity, we are not the long wait from a public testing period of their new Chromium-based browser. Last week we got a sneak peek at new Edge in some photos you can see here, and it was explained that the first tests only had support in 64-bit Windows 10.

read more…

Check out the crazy sum EA paid Ninja to pour Apex Legends


Mar 17, 2019 | Category: IT | Comments

Earned millions of dollars to play for a few hours.

Tyler Blevins, better known as the Ninja in the gaming world, was one of the profiled streams paid by EA to play Apex Legends during launch.

read more…

Page 1 of 375  >  >>