updated 07:05 am EDT, Thu May 3, 2012
Android hit by first mobile drive-by attack
Mobile security firm Lookout has issued an update alerting Android users to a new drive-by malware attack. In a first for mobile devices, the latest exploit uses hacked websites to target Android users. Users who have been affected have navigated unsuspectingly to a compromised website that has a hidden iframe at the bottom of each page triggering the NotCompatible Trojan to download to their Android device.
The automatically downloaded file is named ‘Update.apk,’ but will still need to be manually approved for installation by the user. With millions of Android 2.3 users still awaiting an update to Android 4.0 first released in October last year, the hackers have employed a relatively cunning strategy to trick affected users into unwittingly install the virus. When installed, NotCompatible will seek to connect to private networks and could potentially gain access to normally protected information. Government agencies and enterprise could be vulnerable in this instance.
However, Lookout believes that the number of affected sites remains low and its overall impact remains minimal at this time. The latest scare follows recent attacks on Android including one using Facebook, another using a fake port of a Bjork app and a fake Instagram app. Late last year, McAfee noted that Android malware had surged 76 percent coupled with its rise in popularity. [via Slashgear]