Saturday, April 17, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

This is how malicious Android apps avoid Google’s security vetting

November 4, 2019
in Internet Security
This is how malicious Android apps avoid Google’s security vetting
585
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Why does no one seem to care that flagship Android phones are so buggy?
Adrian Kingsley-Hughes discusses why both Samsung and Google seem to be able to shrug off issues in a way that Apple just couldn’t. Read more: https://zd.net/31RBipz

Google maintains a strict cybersecurity posture when it comes to the functionality and behavior of apps submitted by developers for hosting on the official Google Play Store, but sometimes, malicious software slips through the net. 

You might also like

Security crucial as 5G connects more industries, devices

Google releases Chrome 90 with HTTPS by default and security fixes

SolarWinds: US and UK blame Russian intelligence service hackers for major cyberattack

Malicious Android apps can take a variety of forms — they may be laden with adware designed to generate fraudulent income for developers by forcing users to view or click adverts; banking malware including the Joker variant has been spotted in Google Play apps downloaded close to half a million times, and some fake apps will bury malicious functionality until the moment a victim moves their mobile device. 

As the official repository for Android apps catering to countless app installs every day, Google Play utilizes a range of barriers to reject applications believed to be malicious. 

However, with every improvement, fraudsters strike back by developing new techniques to fool Google into accepting their submissions.

See also: Gaming, photo apps in Google Play infect Android handsets with malware

Bitdefender researchers said on Wednesday that cyberattackers are nothing if not “imaginative” when it comes to dancing around Google protections, and in a new whitepaper (.PDF) on the subject, the cybersecurity firm has listed the key techniques currently employed to ensure malicious apps land in the repository. 

The key techniques are below:

Main logic encrypted and loaded dynamically: By not including an app’s main logic in standard code and relying instead on a native executable dynamic library that is first loaded — leading to the decryption and loading of subsequent code — this can disguise malicious functionality until the app has been downloaded and executed. 

Time checks: An interesting technique documented by Bitdefender is the use of time checks. A hardcoded time stamp will be systematically reviewed, and if the time recorded is over 18 hours, adware then begins to show users advertising. Periodic checks to sustain malvertising can keep these functions hidden and may not trigger an alert from Google Play. 

Long display times: Times between ads — up to 350 minutes — have also been recorded, which the researchers call an “anti Google Play mechanism.”

“Because the ads do not show within a reasonable time, the samples escape security scrutiny,” the team says. 

TechRepublic: How to avoid malware on Android in one easy step

Open source utility libraries: Libraries can be used to pull and run jobs in the background, and these may also be used to show ads and control processes including ‘ShowAds activity’ or the ‘ShowAdsHideIcon’ function.  

Clean SDKs, to begin with: In some instances, developers may upload a clean install of an app, only to replace the codebase over time with additional malicious functionality through updates or by changing the configuration and behavior of an otherwise clean app via a connected server.  

Whether or not you download an app from an official store, there is always some risk that the app will not behave in the way you expect. If there are indications that all is not well — such as power drain, unexpected ads, or high levels of requested permissions without purpose — it’s often safer to remove new apps and perform a malware scan. 

CNET: Uber in talks with Los Angeles as scooter location data lawsuit looms

“Regardless if downloaded from official marketplaces or third-party ones, it’s always recommended to go through user comments and app ratings, as user feedback can be a strong indicator of deceiving or malicious behavior,” Bitdefender added. 

Previous and related coverage


Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0


Credit: Zdnet

Previous Post

First Cyber Attack 'Mass Exploiting' BlueKeep RDP Flaw Spotted in the Wild

Next Post

Machine Learning Recognition & Implications For Our AI Velociraptor And Us

Related Posts

Security crucial as 5G connects more industries, devices
Internet Security

Security crucial as 5G connects more industries, devices

April 17, 2021
Google releases Chrome 90 with HTTPS by default and security fixes
Internet Security

Google releases Chrome 90 with HTTPS by default and security fixes

April 17, 2021
SolarWinds cybersecurity spending tops $3 million in Q4, sees $20 million to $25 million in 2021
Internet Security

SolarWinds: US and UK blame Russian intelligence service hackers for major cyberattack

April 17, 2021
Google Project Zero testing 30-day grace period on bug details to boost user patching
Internet Security

Google Project Zero testing 30-day grace period on bug details to boost user patching

April 17, 2021
Cyberattack on UK university knocks out online learning, Teams and Zoom
Internet Security

Cyberattack on UK university knocks out online learning, Teams and Zoom

April 17, 2021
Next Post
Machine Learning Recognition & Implications For Our AI Velociraptor And Us

Machine Learning Recognition & Implications For Our AI Velociraptor And Us

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

Security crucial as 5G connects more industries, devices
Internet Security

Security crucial as 5G connects more industries, devices

April 17, 2021
Relay Therapeutics pays $85M for startup with a new AI tech for drug discovery
Machine Learning

Relay Therapeutics pays $85M for startup with a new AI tech for drug discovery

April 17, 2021
Google releases Chrome 90 with HTTPS by default and security fixes
Internet Security

Google releases Chrome 90 with HTTPS by default and security fixes

April 17, 2021
ML Scaling Requires Upgraded Data Management Plan
Machine Learning

ML Scaling Requires Upgraded Data Management Plan

April 17, 2021
SolarWinds cybersecurity spending tops $3 million in Q4, sees $20 million to $25 million in 2021
Internet Security

SolarWinds: US and UK blame Russian intelligence service hackers for major cyberattack

April 17, 2021
Machine learning can be your best bet to transform your career
Machine Learning

Machine learning can be your best bet to transform your career

April 17, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • Security crucial as 5G connects more industries, devices April 17, 2021
  • Relay Therapeutics pays $85M for startup with a new AI tech for drug discovery April 17, 2021
  • Google releases Chrome 90 with HTTPS by default and security fixes April 17, 2021
  • ML Scaling Requires Upgraded Data Management Plan April 17, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates