Over 1 Million Google Accounts Hacked by 'Gooligan' Android Malware
by Mohit Kumar
Review by Charles Mohapel
The Hacker News.com, XDA Developers.com, GAMENGUIDE.com Check Point Software Technologies Ltd. News ISBN/ITEM#: CM161203ANDROID
Date: 03 December 2016
Open source Android is the most widely used operating system for smartphones and tablets, but that has once again proven to be its greatest Achilles heel. Discovered by security researchers at Check Point, the 'Gooligan' Android Malware attack campaign is part of the Ghost Push family of malware. According to GAMENGUIDE: "The malware is said to affect those devices with version 4 Android OS such as Ice Cream, Sandwich, Jelly Bean, KitKat, and even Lollipop. There was no confirmation yet if the virus may also infect the latest OS version Marshmallow and Nougat."
If you own an Android smartphone, Beware! A new Android malware that has already breached more than 1 Million Google accounts is infecting around 13,000 devices every day.
Dubbed Gooligan, the malware roots vulnerable Android devices to steal email addresses and authentication tokens stored on them.
Researchers found traces of Gooligan code in dozens of legitimate-looking Android apps on 3rd-party app stores, which if downloaded and installed by an Android user, malware starts sending your device's information and stolen data to its Command and Control (C&C) server.
"Gooligan then downloads a rootkit from the C&C server that takes advantage of multiple Android 4 and 5 exploits including the well-known VROOT (CVE-2013-6282) and Towelroot (CVE-2014-3153)," researchers said in a blog post.
Our Other Pubs: