Beware of ‘GODLESS’ Mobile Malware as it targets Android 5.1 (Lollipop) or earlier

There is no doubt that number of Android users is more, but do you know it is prone to malware? The Japan based cybersecurity firm known as Trend Micro researcher have discovered a family of mobile malware called “GODLESS” that can virtually target any Smartphone running on Android 5.1 (Lollipop) or earlier. This malicious app that carries this threat is specifically found in prominent app stores, including Google Play, as reported by Trend Micro. As, of the now this malware has affected over 850,000 devices around the world with almost half of these devices in India alone.

Global distribution of affected devices:

godlessgraph

The GODLESS mobile malware has been detected as “ANDROIDOS_GODLESS.HRX” that has a set of rooting exploits in its pockets. . It works by using a open-source rooting framework “android-rooting-tools”. It can root various Android based device and also receive remote instruction allowing un-authorized apps to be installed that leads to unwanted ads. The worst part is that these threats can also be used to install backdoors and spy on users. Once a user downloads these malicious apps, the malware waits until the affected device’s screen is turned off before proceeds with its rooting routine.

Trend Micro have found that the apps on Google Play store is safe, but they have a corresponding malicious version that shares the same developer certificate. So, it increases the danger of getting malicious version as although if you have installed the clean app, your app will be affected once it gets upgraded to the newer version. The apps that have this malicious code range from utility apps like flashlights and Wi-Fi apps, to copies of popular games. For example, a malicious flashlight app in Google Play called “Summer Flashlight” contained the malicious Godless code.

godless-app

How to save yourself from these kinds of malicious code:

Country Manager of Trend Micro said “When download apps, regardless if it’s a utility tool or a popular game, user should always review the developer. Unknown developers with very little or no background information may be the source of these malicious apps. It’s also best to download apps from the trusted stores such as Google Play and Amazon. Users should also have secure mobile security that can mitigate mobile malware.”

Since, our mobile is one of the best gadget that is always with us, so, play safe.

Recommended For You

About the Author: Ranjit Ranjan

More than 15 years of experience in web development projects in countries such as US, UK and India. Blogger by passion and SEO expert by profession.

1 Comment

Leave a Reply