Android HummingBad 恶意软件 - 它可以在非 root phone 上安装 rootkit 吗?
Android HummingBad malware - can it install a rootkit on a non-rooted phone?
"HummingBad" 恶意软件现在是新闻,而且不是很好。在研究该主题时,我从 CheckPoint 找到了 this report。这是一段描述 HummingBad 的引述:
HummingBad – Android malware that establishes a persistent rootkit on the device, installs fraudulent applications, and enables additional malicious activity such as installing a key-logger, stealing credentials and bypassing encrypted email containers used by enterprises.
恶意软件应用能否以某种方式绕过 Android "sandbox" 架构来感染 phone?还是这种恶意软件的传播仅限于购买有根 phones 的客户?
它似乎能够直接攻击root设备,但也有多种"Plan B"攻击方法。对于非 root 设备,它依赖于欺骗用户批准安装。
这是 CheckPoint 最近关于 HummingBad 的文章的link:
http://blog.checkpoint.com/2016/07/01/from-hummingbad-to-worse-new-in-depth-details-and-analysis-of-the-hummingbad-andriod-malware-campaign/
这是他们 24 页报告的 link:
http://blog.checkpoint.com/wp-content/uploads/2016/07/HummingBad-Research-report_FINAL-62916.pdf
"HummingBad" 恶意软件现在是新闻,而且不是很好。在研究该主题时,我从 CheckPoint 找到了 this report。这是一段描述 HummingBad 的引述:
HummingBad – Android malware that establishes a persistent rootkit on the device, installs fraudulent applications, and enables additional malicious activity such as installing a key-logger, stealing credentials and bypassing encrypted email containers used by enterprises.
恶意软件应用能否以某种方式绕过 Android "sandbox" 架构来感染 phone?还是这种恶意软件的传播仅限于购买有根 phones 的客户?
它似乎能够直接攻击root设备,但也有多种"Plan B"攻击方法。对于非 root 设备,它依赖于欺骗用户批准安装。
这是 CheckPoint 最近关于 HummingBad 的文章的link: http://blog.checkpoint.com/2016/07/01/from-hummingbad-to-worse-new-in-depth-details-and-analysis-of-the-hummingbad-andriod-malware-campaign/
这是他们 24 页报告的 link: http://blog.checkpoint.com/wp-content/uploads/2016/07/HummingBad-Research-report_FINAL-62916.pdf