Results 1 to 21 of 21

Thread: Android's first Virus.

  1. #1
    Join Date
    Jan 2008
    Location
    NC, USA.
    Posts
    4,429
    Mentioned
    0 Post(s)
    Quoted
    4 Post(s)

    Default Android's first Virus.

    source

    According to Denis Maslennikov, Senior Malware Researcher at Kaspersky Lab, there's not an exact number of infected devices available at present, but the outbreak is currently regional. For now, only Russian Android users can actually lose money after installing the Trojan, but anyone can be infected.
    Popularity has come into play. Welcome to the Windows of smartphones
    Quote Originally Posted by irc
    [00:55:29] < Guest3097> I lol at how BenLand100 has become noidea
    [01:07:40] <@BenLand100> i'm not noidea i'm
    [01:07:44] -!- BenLand100 is now known as BenLand42-
    [01:07:46] <@BenLand42-> shit
    [01:07:49] -!- BenLand42- is now known as BenLand420
    [01:07:50] <@BenLand420> YEA

  2. #2
    Join Date
    Jan 2010
    Posts
    5,227
    Mentioned
    6 Post(s)
    Quoted
    60 Post(s)

    Default

    ;D Hell yeah!

  3. #3
    Join Date
    Jan 2008
    Location
    Ontario, Canada
    Posts
    7,805
    Mentioned
    5 Post(s)
    Quoted
    3 Post(s)

    Default

    damn, and here I thought they were impenetrable.
    Writing an SRL Member Application | [Updated] Pascal Scripting Statements
    My GitHub

    Progress Report:
    13:46 <@BenLand100> <SourceCode> @BenLand100: what you have just said shows you 
                        have serious physchological problems
    13:46 <@BenLand100> HE GETS IT!
    13:46 <@BenLand100> HE FINALLY GETS IT!!!!1

  4. #4
    Join Date
    Jan 2008
    Location
    NC, USA.
    Posts
    4,429
    Mentioned
    0 Post(s)
    Quoted
    4 Post(s)

    Default

    Quote Originally Posted by Nava2 View Post
    damn, and here I thought they were impenetrable.
    It only requires ignorance of the user, just like Windows.
    Quote Originally Posted by irc
    [00:55:29] < Guest3097> I lol at how BenLand100 has become noidea
    [01:07:40] <@BenLand100> i'm not noidea i'm
    [01:07:44] -!- BenLand100 is now known as BenLand42-
    [01:07:46] <@BenLand42-> shit
    [01:07:49] -!- BenLand42- is now known as BenLand420
    [01:07:50] <@BenLand420> YEA

  5. #5
    Join Date
    Jan 2009
    Location
    Turlock/LA, California
    Posts
    1,494
    Mentioned
    3 Post(s)
    Quoted
    66 Post(s)

    Default

    luckily this virus only sent SMS messages. im just waiting for a virus that bricks the phone somehow (like a bricked PSP)

  6. #6
    Join Date
    Feb 2006
    Location
    Amsterdam
    Posts
    13,692
    Mentioned
    146 Post(s)
    Quoted
    130 Post(s)

    Default

    Quote Originally Posted by noidea View Post
    It only requires ignorance of the user, just like Windows.
    No, it does not. You don't _get_ admin permissions on android except for very specific features.

    Quote Originally Posted by x[Warrior]x3500 View Post
    luckily this virus only sent SMS messages. im just waiting for a virus that bricks the phone somehow (like a bricked PSP)
    Why would the virus kill itself?



    The best way to contact me is by email, which you can find on my website: http://wizzup.org
    I also get email notifications of private messages, though.

    Simba (on Twitter | Group on Villavu | Website | Stable/Unstable releases
    Documentation | Source | Simba Bug Tracker on Github and Villavu )


    My (Blog | Website)

  7. #7
    Join Date
    Sep 2006
    Location
    Canada
    Posts
    1,124
    Mentioned
    0 Post(s)
    Quoted
    5 Post(s)

    Default

    Quote Originally Posted by Wizzup? View Post
    Why would the virus kill itself?
    I agree that would be very dumb, but you could have it brick itself only after it has infected X amount of platforms.

    But even then, that begs the question. Would you have been better off having it infect more? And secondly, when your phone suddenly gets bricked that throws off alarm signals. You would probably want your virus to go undetected as long as possible.

  8. #8
    Join Date
    May 2007
    Location
    Everywhere
    Posts
    1,428
    Mentioned
    0 Post(s)
    Quoted
    2 Post(s)

    Default

    Quote Originally Posted by Capricorn View Post
    I agree that would be very dumb, but you could have it brick itself only after it has infected X amount of platforms.

    But even then, that begs the question. Would you have been better off having it infect more? And secondly, when your phone suddenly gets bricked that throws off alarm signals. You would probably want your virus to go undetected as long as possible.
    And that is the beauty of viruses
    You'd have to make one that infects and spreads over a long time, but give it code to execute on a certain day and brick them all.
    Making them virulent and damaging has such a fine line...

  9. #9
    Join Date
    Jan 2008
    Location
    NC, USA.
    Posts
    4,429
    Mentioned
    0 Post(s)
    Quoted
    4 Post(s)

    Default

    Quote Originally Posted by Wizzup? View Post
    No, it does not. You don't _get_ admin permissions on android except for very specific features.
    A virus isnt just something that deletes everything off your system...
    This virus sends SMS messages. This application/virus is installed not through the market, but through an application manager or package manager such as Astro. When you install something, it asks you if you approve that it needs xyz permissions, >99% of users do not look at the permission requirements. They hit next and it installs.

    The application can then do its thing, although Android does notify you when you send more than x SMS messages in y time.

    This certainly sounds like a Windows situation to me. There are enough idiots that will ignore the permission notification.
    Quote Originally Posted by irc
    [00:55:29] < Guest3097> I lol at how BenLand100 has become noidea
    [01:07:40] <@BenLand100> i'm not noidea i'm
    [01:07:44] -!- BenLand100 is now known as BenLand42-
    [01:07:46] <@BenLand42-> shit
    [01:07:49] -!- BenLand42- is now known as BenLand420
    [01:07:50] <@BenLand420> YEA

  10. #10
    Join Date
    Feb 2006
    Location
    Amsterdam
    Posts
    13,692
    Mentioned
    146 Post(s)
    Quoted
    130 Post(s)

    Default

    Quote Originally Posted by noidea View Post
    A virus isnt just something that deletes everything off your system...
    This virus sends SMS messages. This application/virus is installed not through the market, but through an application manager or package manager such as Astro. When you install something, it asks you if you approve that it needs xyz permissions, >99% of users do not look at the permission requirements. They hit next and it installs.

    The application can then do its thing, although Android does notify you when you send more than x SMS messages in y time.

    This certainly sounds like a Windows situation to me. There are enough idiots that will ignore the permission notification.
    1) Windows does not have a package manager. Software comes from untrusted sources.
    2) What the hell is a virus doing in the applications repository? Applications in the repository are supposed to be safe. Is the application closed source?



    The best way to contact me is by email, which you can find on my website: http://wizzup.org
    I also get email notifications of private messages, though.

    Simba (on Twitter | Group on Villavu | Website | Stable/Unstable releases
    Documentation | Source | Simba Bug Tracker on Github and Villavu )


    My (Blog | Website)

  11. #11
    Join Date
    Dec 2006
    Location
    Houston, TX USA
    Posts
    4,791
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    Virus? No, malicious application? Yes.

  12. #12
    Join Date
    Jan 2008
    Location
    NC, USA.
    Posts
    4,429
    Mentioned
    0 Post(s)
    Quoted
    4 Post(s)

    Default

    Quote Originally Posted by Wizzup? View Post
    2) What the hell is a virus doing in the applications repository? Applications in the repository are supposed to be safe. Is the application closed source?
    No This isnt in the market or repo. In Android you can obtain a .apk from an untrusted source and install through an application installer. Not the market, but a file manger, such as Astro, can install things with a .apk
    Quote Originally Posted by IceFire908
    Virus? No, malicious application? Yes.
    So yes, a virus. Anything malicious can be called a virus.
    Quote Originally Posted by irc
    [00:55:29] < Guest3097> I lol at how BenLand100 has become noidea
    [01:07:40] <@BenLand100> i'm not noidea i'm
    [01:07:44] -!- BenLand100 is now known as BenLand42-
    [01:07:46] <@BenLand42-> shit
    [01:07:49] -!- BenLand42- is now known as BenLand420
    [01:07:50] <@BenLand420> YEA

  13. #13
    Join Date
    Dec 2006
    Location
    Houston, TX USA
    Posts
    4,791
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    Quote Originally Posted by noidea View Post
    No This isnt in the market or repo. In Android you can obtain a .apk from an untrusted source and install through an application installer. Not the market, but a file manger, such as Astro, can install things with a .apk

    So yes, a virus. Anything malicious can be called a virus.
    http://en.wikipedia.org/wiki/Computer_virus

    A computer virus is a computer program that can copy itself[1] and infect a computer. The term "virus" is also commonly but erroneously used to refer to other types of malware, including but not limited to adware and spyware programs that do not have the reproductive ability. A true virus can spread from one computer to another (in some form of executable code) when its host is taken to the target computer; for instance because a user sent it over a network or the Internet, or carried it on a removable medium such as a floppy disk, CD, DVD, or USB drive.[2]
    Then it is a matter of opinion calling it a virus, since it does not replicate itself and infect, rather it's primarily the user's fault for allowing untrusted software access, especially in an open source environment (much unlike winblows <--- horrible comparison you made there btw), anyways any technological medium is subject to malicious programs "viruses?" therefor I see no reason why the android OS is being singled out.

  14. #14
    Join Date
    Feb 2006
    Location
    Amsterdam
    Posts
    13,692
    Mentioned
    146 Post(s)
    Quoted
    130 Post(s)

    Default

    Quote Originally Posted by noidea View Post
    No This isnt in the market or repo. In Android you can obtain a .apk from an untrusted source and install through an application installer. Not the market, but a file manger, such as Astro, can install things with a .apk
    Then it is indeed the fault of the user. Even though I expected Android not to give this feature if they want to be on the safe side. Only install apps from the app manage = safe. External sources != safe.



    The best way to contact me is by email, which you can find on my website: http://wizzup.org
    I also get email notifications of private messages, though.

    Simba (on Twitter | Group on Villavu | Website | Stable/Unstable releases
    Documentation | Source | Simba Bug Tracker on Github and Villavu )


    My (Blog | Website)

  15. #15
    Join Date
    Feb 2007
    Location
    Alberta, Canada
    Posts
    4,615
    Mentioned
    50 Post(s)
    Quoted
    429 Post(s)

    Default

    Quote Originally Posted by Wizzup? View Post
    Then it is indeed the fault of the user. Even though I expected Android not to give this feature if they want to be on the safe side. Only install apps from the app manage = safe. External sources != safe.
    Yes, but as usual (not meant in a mean way) you generalize everyone as someone like you, who understands the system entirely. People who buy the product would assume that android would not let files into their phone which could do malicious things. Hell, many people (most?) wouldn't even know that there are viruses for phones. The general public is dumb with technology, you are not. This is something to remember next time there is a thread about phones XD

    Scripts: Edgeville Chop & Bank, GE Merchanting Aid
    Tutorials: How to Dominate the Grand Exchange

    Quote Originally Posted by YoHoJo View Post
    I like hentai.

  16. #16
    Join Date
    Jan 2010
    Posts
    5,227
    Mentioned
    6 Post(s)
    Quoted
    60 Post(s)

    Default

    Or any technology, to be honest.

    Anyway, Wizzup?, if it were only from an "app store" that apps could be downloaded from, it would be quite similar to Apple's app store, which, as we all know, is a terribly dictated place.

    Personally, I think that the people who would be downloading .apk files will generally know a small amount about what they're doing. I don't think this is that big of a deal.

  17. #17
    Join Date
    Jan 2007
    Location
    the middle of know-where
    Posts
    1,308
    Mentioned
    0 Post(s)
    Quoted
    1 Post(s)

    Default

    It's not just the android... The iphone got/has a virus too.
    On vacation in NeverLand,
    Code:
    typedef int bool;
    enum { false, true };

  18. #18
    Join Date
    Oct 2006
    Location
    Netherlands
    Posts
    3,285
    Mentioned
    105 Post(s)
    Quoted
    494 Post(s)

    Default

    Most people only search on android market for apps....

  19. #19
    Join Date
    Sep 2006
    Posts
    5,219
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Vetted/approved open/closed source marketplaces/stores are a false sense of a security, as they are impossible to 100% guarantee. Bottom line is everything you install is a risk. I've been telling my customers that hardware failure and software corruption is just a matter of time, and to continue to try to prevent it, but more importantly be prepared when it happens anyway.

  20. #20
    Join Date
    Oct 2007
    Posts
    72
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    Goes to show linux based OSes have the capacity to be infected with a virus like any other system. It's safe to say that the virus would only be able to brick a phone on the OS level, because to enable the root user on the android OS requires an external debugging console. It's very possible for the IPHONE to be completely screwed though, because http://www.jailbreakme.com/ shows the ability to delete and rewrite parts of the IOS through pdf? files.

  21. #21
    Join Date
    Apr 2007
    Posts
    3,152
    Mentioned
    3 Post(s)
    Quoted
    1 Post(s)

    Default

    yea, the iphone virus was actually a problem. This, to me seems like the user's fault, even though i probably would stop looking at permissions too closely too after installing so many applications.
    SCAR Tutorials: The Form Tutorial | Types, Arrays, and Classes
    Programming Projects: NotePad | Tetris | Chess


Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •