Sophos: New malware hides behind nude wallpaper apps

Users of Android devices may have to think twice before downloading and installing that nude wallpaper – it just may hide a dangerous malware. Security vendor Sophos said the strain of Chinese malware may send costly SMS messages to earn cash for its creators. "If you made the mistake of agreeing to install the app, the Trojan would have full access to the personal details you store on the device, as well as the ability to send SMS messages to a premium rate number," it said. The malware tricks users into thinking they are installing a supposedly harmless GIF wallpaper file on their Android device. A provocative message even appears, suggesting that a secondary app is being installed to allow permanent use of the images. Sophos cited some reports that over 500,000 Android devices are infected with the malware, which its products detect as Andr/SMSZomb-A. "Clearly, this threat is only likely to be successful amongst Chinese-speaking Android users. But, of course, there are plenty of them!" it noted. But Sophos also noted a user who configured an Android device to only allow installation of apps from a legitimate Android Marketplace will get a warning – a chance of sorts to avoid infection. "However, if you are comfortable installing apps from unknown sources, and ignore the warning messages, the Trojan horse will request certain permissions: to read and write SMS and MMS messages, internet access, read the phone's state and identity, read system logs, restart other applications, retrieve a list of running applications, etc," it added. Sophos also said that while this malware targets mainly users based in China, it has seen a steady rise in interest among cybercriminals worldwide in infecting Android devices. "It would be foolhardy for Android users not to recognize the rising tide of Android malware, both inside and outside the official Google Play marketplaces," it said. — LBG, GMA News