There is a new malware alert out for Android smartphones, the FBI said through an alert on its Internet Crime Complaint Center (IC3).
Malicious software threats have been in the news for Android phones for months and smartphone users need to be aware that cyber criminals are finding new ways to install malicious software on devices. The latest threat to Android phone users, according to the FBI, is a “work-at-home opportunity that promises a profitable payday just for sending out email.”
The FBI said the latest versions of the malware affecting smartphone security are Finfisher and Loozfon.
The notification said, “A link within these advertisements leads to a website that is designed to push Loozfon on the user’s device. The malicious application steals contact details from the user’s address book and the infected device’s phone number.”
The Finfisher application is spyware that allows an attacker to operate the device remotely. The installation of Finfisher typically ends up looking like a system update.
Last week, McAfee researchers said more than 60% of Android malware uses fake premium SMS messages.
“Malware authors appear to make lots of money with this type of fraud, so they are determined to continue improving their infrastructure, code, and techniques to try to avoid antivirus software,” McAfee said in a blog post. “It’s an ongoing struggle, but we are constantly working to keep up with their advances.”
In their security alert, the FBI offered suggestions about how to keep a mobile device safe:
• Check the reviews for applications before installing them
• Do not connect to unknown wireless networks because these networks can be used to capture your information before it is sent to a legitimate server.
• Do not install software from unknown sources