Users who downloaded and installed this fake Flash app would be infected with a generic "malware downloader," which would download all sort of different malware on their devices, based on instructions it received from an online command & control server. Just like so many times before, they were told they needed an updated Flash Player to view the content of another site. The malicious app, disguised as a Flash for Android package, was offered as an automatic download to users landing on the flash-updateinfo website.Īccording to ESET, users ended up on this site after being redirected from malicious adult sites, and via social media spam. The most recent case was discovered this week by ESET security researchers. Android Flash Player lure still efficient even today Take it from an infosec reporter like yours truly. The amount of reports citing a fake Flash Player for Android as the source of a malware infection is staggering.
In the past few years, we've seen this basic lure used to trick users into downloading hoards of banking trojans, adware, and RATs on the Android devices of unsuspecting users. Unfortunately, this is exactly what seems to be happening, and on a regular basis, as malicious apps disguised as Adobe Flash continue to be one of the simplest and most efficient ways to distribute mobile malware, right there next to "dedicated video players for viewing adult movies." It is unbelievable that almost five years after Adobe announced it would stop developing Flash Player for Android, users are still installing a non-existent piece of software, which in almost all cases is just malware in disguise.
0 kommentar(er)
