ZR Systems Blog

ZR Systems has been serving the Aiea area since 2006, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
(adsbygoogle = window.adsbygoogle || []).push({});

Download the Wrong App and Have More Than Pokémon Fever Infect Your Device

Download the Wrong App and Have More Than Pokémon Fever Infect Your Device

There’s a new augmented reality game on the market these days. Perhaps you’ve heard of it - a title called Pokemon Go, which lets you capture virtual monsters that “appear” on your smartphone’s camera. However, hackers have seized this opportunity to infect players’ mobile devices with a backdoor called DroidJack, which uses the mobile app’s immense popularity to its advantage.

As one of Nintendo’s most popular gaming franchises, it shouldn’t come as a surprise that Pokemon Go has experienced such a warm reception amongst both new and old fans of the series. It’s ranked as the #1 most downloaded app on both the Apple Store and Google Play store, and was so wildly successful that Nintendo’s stock surged following its release. With over 75 million users worldwide, it has more users than some of the most popular smartphone apps, including Tinder, Twitter, and Google Maps.

Of course, hackers have to ruin the most popular of things, and they made an attempt to exploit this in the form of a malicious APK (Android application package). The game experienced a soft release, probably in order to ensure that the servers (which many Pokemon Go gamers suspect is simply a closet full of potato electrodes due to frequent crashes) could handle the traffic volume, which left many countries around the world without access to the game at first.

Thus, impatient fans made attempts to download the APK file and “side-load” it onto their devices - a major no-no for any security-minded mobile device user. Basically, you have to allow app installation from unknown sources, which is frowned upon due to some apps containing malware, or unnecessary permissions. Yet, those who wanted to play the game didn’t think for one second that what they were really downloading was a backdoor into their devices.

Due to the exclusivity of the application in the days before its release, many users outside of a select few countries chose to download the APK from an unknown source and just rolled with it. Today, the app is available in many countries, but a modified APK that was released online prior to the official release allowed remote access to the device, and can provide full control over the victim’s phone. In worst-case scenarios, this vulnerability extends to the rest of any network that the device is connected to. Security firm Proofpoint suggests that it’s entirely possible that, should infected devices connect to your network, networked resources can also be put at risk.

Take a look at the DroidJack-infected app’s permission request, and see for yourself just how strange they might look.

https://www.proofpoint.com/sites/default/files/users_content/10/pokemon-fig2.png
https://www.proofpoint.com/sites/default/files/users_content/10/pokemon-fig3.png

This is a valuable lesson to anyone who uses a smartphone: be careful of what apps you download, and ensure that you aren’t giving your apps too many permissions. There’s almost no reason that a game of any kind should be able to access your text messages, make phone calls, modify your contacts, record audio, or anything else of the sort. Exploitation of the APK hasn’t necessarily been observed in the wild, but a development such as this, where hackers use popular apps to spread their infections, sets a dangerous precedent that cannot be ignored.

You should never install apps from unknown sources in the first place, especially on company devices and smartphones. It’s especially important that you only download apps from reputable sources, like the Apple store and the Google Play store.

After all, “Gotta catch ‘em all,” shouldn’t refer to malware infections.

Comments

 
No comments yet
Already Registered? Login Here
Guest
Thursday, 17 October 2019
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

(adsbygoogle = window.adsbygoogle || []).push({});

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Tip of the Week Privacy Technology Best Practices Cloud Business Computing Hosted Solutions Backup Windows 10 Hackers Microsoft Network Security Office Software Business Hardware Workplace Tips Disaster Recovery Computer Email Upgrade Server Efficiency Malware Data Business Continuity Quick Tips Windows VoIP IT Services Microsoft Office Outsourced IT Mobile Devices Save Money Network Ransomware Alert Small Business Managed IT Services Employer-Employee Relationship Managed IT Services Passwords Browser Hacking Cybersecurity Social Engineering Internet Miscellaneous Business Management Productivity Operating System Remote Computing communications Innovation Telephone Systems User Tips Social Media Office 365 WiFi Mobility Password Windows 10 Virtualization Productivity Facebook IT Support Communication Cloud Computing Health Managed Service Provider Application Staff Office Tips Spam Data Management Education Law Enforcement IT Support Data Breach IT solutions Customer Relationship Management Meetings Google HaaS DDoS Internet Exlporer Flexibility Work/Life Balance Smartphone Collaboration Risk Management Recovery Private Cloud Marketing Encryption Gmail Holiday Tech Support Networking Smartphones Processor Cybercrime Phishing Artificial Intelligence Bandwidth Best Practice Public Computer Environment Phone System Data Storage Data recovery Telephone System Training Techology Hard Drives Social Networking Shadow IT Big Data Managing Stress Display Worker Commute Data Backup Cryptocurrency Files Employer Employee Relationship Consultant Manufacturing App Memory Emergency Budget Help Desk Automobile Telecommuting Cryptomining User Error Hiring/Firing Mobile Computing Chrome Best Available Cabling BDR Distributed Denial of Service VPN Patch Management Avoiding Downtime Employee/Employer Relationship Remote Work Database End of Support Worker Fax Server Customer Service Cables Legal Current Events Wireless Technology Transportation Infrastructure Entertainment Identity Theft Internet exploMicrosoft Rootkit Windows 8 Users Mobile Device Entrepreneur Bring Your Own Device Computers Virtual Private Network Politics Credit Cards Paperless Office Advertising Vendor Management Tablet Wireless Maintenance IT Infrastructure Network Congestion Lithium-ion battery Mobile Device Management Firewall Remote Workers Keyboard Fraud Business Technology SaaS Bloatware Windows 7 Scalability Two Factor Authentication Remote Monitoring Managed IT Service USB OneNote Android Public Cloud Tools Website Shortcut Windows Server 2008 R2 Black Market Notifications Going Green Settings Managed Services Provider Wi-Fi Evernote Saving Money Biometric Security Hybrid Cloud Assessment SharePoint Applications Spam Blocking Troubleshooting Two-factor Authentication Electronic Medical Records Vendor Television Tablets eWaste Social WIndows 7 Retail Hard Drive Computing Infrastructure Business Intelligence Books Workers Government Save Time Excel Managed Service