Masress : Android smartphones hit by 'largest account breach to date'

Egypt's stocks retreat on Wednesday; July 30 amid local sell-off Egypt's Cabinet approves E-Tax platform contract EU economic sentiment improves in July '25 PM: Sisi's Gaza speech reaffirms Cairo's steadfast stance on Palestinian cause Egypt, France airdrop aid to Gaza amid growing humanitarian crisis, global criticism of Israel Egypt launches initiative with traders, manufacturers to reduce prices of essential goods SCZONE chief discusses strengthening maritime, logistics cooperation with Panama Supply minister discusses strengthening cooperation with ITFC Egypt strengthens healthcare partnerships to enhance maternity, multiple sclerosis, and stroke care Egypt keeps Gaza aid flowing, total tops 533,000 tons: minister Egypt reviews health insurance funding mechanism to ensure long-term sustainability Gaza on verge of famine as war escalates, ceasefire talks stall Gaza crisis, trade on agenda as Trump hosts Starmer in Scotland Egyptian president follows up on initiatives to counter extremist thought Indian Embassy to launch cultural festival in Assiut, film fest in Cairo Egyptian aid convoy heads toward Gaza as humanitarian crisis deepens Culture minister launches national plan to revive film industry, modernise cinematic assets Egypt will keep pushing for Gaza peace, aid: PM I won't trade my identity to please market: Douzi Sisi sends letter to Nigerian president affirming strategic ties Egypt, Senegal sign pharma MoU to unify regulatory standards Two militants killed in foiled plot to revive 'Hasm' operations: Interior ministry Egypt, Somalia discuss closer environmental cooperation Egypt's EHA, Huawei discuss enhanced digital health Foreign, housing ministers discuss Egypt's role in African development push Egypt reveals heritage e-training portal Three ancient rock-cut tombs discovered in Aswan Sisi launches new support initiative for families of war, terrorism victims Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara Egypt's Irrigation Minister urges scientific cooperation to tackle water scarcity Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary Germany among EU's priciest labour markets – official data Paris Olympic gold '24 medals hit record value A minute of silence for Egyptian sports Russia says it's in sync with US, China, Pakistan on Taliban It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights Sudan says countries must cooperate on vaccines Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19 Egypt to tax bloggers, YouTubers Egypt's FM asserts importance of stability in Libya, holding elections as scheduled We mustn't lose touch: Muller after Bayern win in Bundesliga Egypt records 36 new deaths from Covid-19, highest since mid June Egypt sells $3 bln US-dollar dominated eurobonds Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform

Thank you for reporting!

This image will be automatically disabled when it gets reported by several people.

Android smartphones hit by 'largest account breach to date'
Researchers in Israel uncover new malware affecting Google-powered smartphones. They say more than 1 million uses are affected by 'Gooligan,' which steals user data.

Deutsche Welle Published in Daily News Egypt on 01 - 12 - 2016

Malicious software that can steal email addresses and authentification details has infected more than one million smartphones running Google's Android operating system, a cybersecurity company says.
"We believe that it is the largest Google account breach to date, and we are working with Google to continue the investigation," the Check Point security research team wrote in their blog.
"We encourage Android users to validate whether their accounts have been breached."
Tel Aviv-based Check Point said the software, called Gooligan, was able to infiltrate a range of older Android versions, including 4.x (Jelly Bean, KitKat) and 5.x (Lollipop), representing around three-quarters of Android devices. Google says Gooligan is a variant of malware known as Ghost Push, which the company has been tracking since 2014.
The number of infections was growing by around 13,000 a day, they said. A majority of infected devices, some 57 percent, are in Asia, with only 9 percent in Europe and 19 percent in the Americas.
The researchers found Gooligan hidden in 86 apps available from third-party app stores. Once installed, it uses a process known as rooting to steal Google authentification certificates, which it can then use to log onto Google-related websites, such as Gmail, YouTube and Google Play, posing as the user.
Mission: Download apps
However, Google's Android security director Adrian Ludwig said there had been no evidence user data had been accessed. "We used automated tools to look for signs of other fraudulent activity within the affected Google accounts. None were found."
Instead, he said, the intention appeared to have been to download apps without the user's consent and post positive reviews of them: "The motivation behind Ghost Push is to promote apps, not steal information, and that held true for this variant."
Check Point described the procedure: "Ad servers, which don't know whether an app using its service is malicious or not, send Gooligan the names of the apps to download from Google Play. After an app is installed, the ad service pays the attacker. Then the malware leaves a positive review and a high rating on Google Play."
In contrast with Microsoft's Windows Mobile and Apple's iOS, Android devices generally do not have access to the latest version of the operating system, increasing vulnerability.
The only solution, Google said, is to reflash an infected device with its original firmware—something beyond the technical ability of most smartphone users.

Clic here to read the story from its source.