The hackers upload malicious software downloaders on Google Play store, and after the victims install the downloaders, they load the Trojan into the system and steal the victim’s account information in various applications by way of keyboard side recording, and then commit financial fraud.
As app stores like Google Play begin to adopt a security layer, it further impeds the spread of malware. However, these hackers are not easy to exploit. The team notes that malware tends to be specialized and specialized, and to circumvent the evolving app store defenses, Hackers’ current strategy tends to be to not upload the malware itself to stores in the first place to avoid easy detection and sampling.
Instead, hackers upload a seemingly innocuous piece of software with a downloader that is more likely to evade security checks and recursive scans than the malware itself, and, once on the victim’s device, can open a wide back door to introduce the malware itself into the system. These malicious downloaders in the app store are mainly aimed at infecting the Anubis Bank Trojan.
The IBM X-Force research team notes that these types of cybercrime services are common on the black market, and that the people who distribute these downloaders in stores provide professional services to various malicious groups to further financial scams using action trojans. The ability of these individuals to constantly update malicious downloaders and keep C&C servers running to infect more victims is evidence of an organized, skilled and well-thought-out criminal enterprise.
In addition, smuggling malware into official stores is efficient for hackers because they have the most active users and users tend to believe content on official stores, thus reducing their vigilance. The X-Force research team also believes that the organized distribution of malicious trojans has been commercialized, there are professional service providers, and users should be aware of the risks posed by mobile malware. Article from: Huizhong APP mobile phone client http://jumbotex.com.tw/