Connect with us

Technology

Turn the Light On and Give Me Your Passwords

Published

on

ESET researchers have discovered another banking trojan on Google Play — this time disguised as a Flashlight widget and targeting a potentially unlimited number of apps.

Android users were the target of another banking malware with screen locking capabilities, masquerading as a flashlight app on Google Play. Unlike other banking trojans with a static set of targeted banking apps, this trojan is able to dynamically adjust its functionality.

Aside from delivering promised flashlight functionality, the remotely controlled trojan comes with a variety of additional functions aimed at stealing victims’ banking credentials. Based on commands from its C&C server, the trojan can display fake screens mimicking legitimate apps, lock infected devices to hide fraudulent activity and intercept SMS and display fake notifications in order to bypass 2-factor-authentication.

The malware can affect all versions of Android. Because of its dynamic nature, there might be no limit to targeted apps — the malware obtains HTML code based on apps installed on the victim’s device and uses the code to overlay the apps with fake screens after they’re launched.

The trojan, detected by ESET as Trojan.Android/Charger.B, was uploaded to Google Play on March 30 and got installed by up to 5000 unsuspecting users before being pulled from the store on ESET’s notice on April 10

How does it operate?

As soon as the app is installed and launched, it requests device administrator rights. Users with Android 6.0 and above also need to manually permit usage access and drawing over other apps. With the rights and permissions granted, the app hides its icon, appearing on the device only as a widget.

The actual payload is encrypted in the assets of the APK file installed from Google Play, evading detection of its malicious functionality. The payload is dropped, decrypted and executed when the victim runs the app.

The Trojan first registers the infected device to the attackers’ server. Apart from sending device information and a list of installed applications, the malware gets up close and personal with its victims — it also attaches a picture of the device owner taken by the front camera.

If the sent information indicates the device is located in Russia, Ukraine or Belarus, the C&C commands the malware to stop its activity — most likely to avoid prosecution of the attackers in their home countries.

Based on the apps found installed on the infected device, the C&C sends corresponding fake activity in the form of a malicious HTML code. The HTML is displayed in WebView after the victim launches one of the targeted apps. Legitimate activity is then overlaid by a fake screen requesting victim’s credit card details or banking app credentials.

However, like we mentioned before, specifying what apps qualify as “targeted” is tricky, as the requested HTML varies based on what apps are installed on the particular device. During our research, we’ve seen fake screens for Commbank, NAB and Westpac Mobile Banking, but also for Facebook, WhatsApp, Instagram and Google Play.

The credentials inserted into the fake forms are sent unencrypted to the attackers’ C&C server.

As for the device locking, we suspect this function enters the picture when cashing out the compromised bank accounts. The attackers can remotely lock devices with a fake update lookalike screen to hide fraudulent activity from victims, as well as to ensure they can’t interfere.

To communicate with C&C, the Trojan misuses Firebase Cloud Messages (FCM), which is the first time we’ve seen Android malware using this communication channel.

Based on our research, the app is a modified version of Android/Charger, first discovered by Check Point researchers in January 2017. Unlike the first version that primarily extorted victims by locking their devices and demanding ransom, the attackers behind Charger are now trying their luck with phishing for banking credentials – an evolution rather rare in the world of Android malware.

With its fake login screens and locking capabilities, Android/Charger.B also bears some resemblance to the banking malware we discovered and analyzed in February. What makes this latest discovery more dangerous, however, is the fact that its target can be dynamically updated, as opposed to being hardcoded in the malware — opening unlimited options for future misuse.

Has my device been infected? How do I clean it?

If you’ve recently downloaded a Flashlight app from Google Play, you might want to check if you haven’t accidentally reached for this trojan.

The malicious app can be found in Setting > Application Manager/Apps > Flashlight Widget.

While locating the app is simple, uninstalling it is a whole another story. The trojan tries to prevent getting uninstalled by not allowing victims to turn off the active device administrator – a necessary step for removing the app. When trying to deactivate the rights, the pop-up screen doesn’t go away until you change your mind and click “activate” again.

In such a case, the app can be uninstalled by booting your device into Safe mode, which will enable you to go through the two steps of removing the malicious app.

How to stay safe

To avoid dealing with the consequences of mobile malware, prevention is always the key.

Whenever possible, opt for official app stores when downloading apps. Although not flawless, Google Play does employ advanced security mechanisms to keep malware out, which doesn’t have to be the case with alternative stores.

When in doubt about installing an app, check its popularity by number of installs, ratings and, most importantly, content of reviews.

After running anything you’ve installed on your mobile device, pay attention to what permissions and rights it requests. If an app asks for permissions that don’t seem adequate to its function — like device administrator rights for a Flashlight app — you might want to rethink your choice.

Last but not least, use a reputable mobile security solution to protect your device from latest threats.

 

SOURCE: ESET

Continue Reading
Comments

Technology

Globe Wins TM Forum Catalyst Award for Innovation, Pushes for API Standardization

Published

on

Project OAsIS Team led by Globe Head of Enterprise Architecture Vincent Seet (5th from left), receives the Outstanding Catalyst for Innovation Award at the recently concluded TM Forum Live!

Globe Telecom is taking the lead in setting standards for APIs with Project OAsIS having received the award for Outstanding Catalyst for Innovation in the recently concluded TM Forum Live! Asia 2017 in Singapore.

Short for Open APIs for a vibrant IoT ecosystem, Project OAsIS takes on bridging the fragmented IoT industry. The goal of Project OAsIs is to identify and adopt the best-suited APIs for Telco IoT applications, platforms and connected things to make them interoperable regardless of which protocol or framework they use.

At the TM Forum Live! Asia 2017 event, Globe Telecom demonstrated Project OAsIS through a workflow of working prototypes for a connected home and a connected parking use case. These prototypes included application management systems and mobile apps that were connected to devices including a fan, a lamp, and a motion-sensor for the connected home; and a demonstration parking lot with gantries, proximity sensors, radio-frequency identification (RFID) readers and an LCD screen for the connected parking scenario.

The mobile app for the connected home was also equipped with a security feature. This is an added user experience as the app notifies the user if motion is detected inside the home while the system is in “away” mode. On the other hand, the mobile app for the connected parking makes it easier for the user to search for and reserve parking slots. With the mobile app, it can easily track available parking spaces around the area and do mobile payments when leaving.

“We want to ensure that Globe Telecom can open ways to onboard new connected things and applications with less integration but, with great impact to our users,” Globe Chief Technology and Information Officer Gil Genio said.

David Pleasance (extreme right), Chairman of the TM Forum Board Directors, visits the booth of Project OAsIS as one of the judges.

The POC project proposed a standardized set of working APIs to interconnect different IoT ecosystems, aiming to bridge gaps in IoT. These OAsIS APIs will facilitate the interconnectivity of IoT applications, platforms and connected things. It will allow customers’ orders to be processed and billed, and devices to be controlled across platforms. “In terms of connected things and IoT applications, Globe through Project OAsIS, could provide more options to our users in making the IoT ecosystem an attractive package to other partners, which in turn could lead to a more comprehensive adoption of the technology,” Genio also said.

He explained that even without the award, the entire OAsIS team, led by the Enterprise Architecture Group, and Emerging Technologies under Solutions Delivery Division, Information Systems Group, is hoping to leverage on TM Forum’s reach. “The award gives more focus on the importance of standardizing APIs as a building block in IoT, and also acknowledges the vision and effort of the OAsIS team. We’re hoping that this will further motivate the TM Forum community in the adoption of these IoT APIs,” Genio added.

He further emphasized that device manufacturers, communications service providers (CSPs) and application developers can eventually benefit from the network effect, find ways to expand the IoT as a whole and accelerate the maturity of the market.

The TM Forum Catalyst Award is a rapid-fire innovation project that allows telco operators and solution vendors to participate openly and solve industry challenges. As a digital service provider, Globe Telecom has always aimed for a digital transformation through the power of technology. Earlier this year, Globe Telecom has endorsed TM Forum’s suite of Open APIs. To date, these Open APIs are now being used to enable a range of business scenarios and enable a wide range of revenue growth opportunities for communications service providers (CSPs) and their partners and suppliers.

Continue Reading

Featured

Celebrate New Beginnings with the OPPO F5 Youth Now at Php12,990

Published

on

OPPO Philippines kicks off 2018 with a price drop announcement of the OPPO F5 Youth. Now priced at Php12,990, everyone can experience the innovative A.I. Beauty Technology for natural selfies with 6” Full screen display for an immersive visual experience.

“Our OPPO F5 Series is known for its strong value proposition, especially its admirable selfie feature and solid performance. With an OPPO F5 smartphone matching our customers’ needs, we believe our lineup is now more appealing to the market,” said Eason de Guzman, OPPO Philippines’ Public Relations Manager.

The OPPO F5 Series now has a more competitive lineup: the F5 Youth at Php12,990, the OPPO F5 at Php15,990, and the OPPO F5 6GB Red at Php21,990. All smartphones feature OPPO’s A.I. Beauty Technology, known for its unique approach of delivering natural looking selfies. It can analyze the face of a subject with more than 200 recognition spots and determine the age, gender, skin type, and skin tone. This produces a customized selfie experience with effortless editing.

For more information about the whole OPPO F5 series, you may visit Oppo or Oppo F5 Youth. You can also follow OPPO on Facebook  for the store list and latest updates.

Continue Reading

Technology

Photic Releases Smart Wi-Fi Audio Processor in CES 2018

Published

on

Image Source: PRNewsfoto/Photic

Photic (Shenzhen Photic Technology Co., Ltd), a promising new strong force in mobile industry, founded by Mr. Richard Shi (Shi Lichao) with the belief of innovating the traditional mobile accessory line by injecting artistic design and new technology, build up full lines of mobile chargers, wireless audio processor and voice controlled car audio system, all these will hit market in 2018 and start the first show in CES this time, welcome to visit our booth at Sands Hall A-D, BOOTH No. is 42837.

The most prominent new item is the wireless audio processor, it will be a great help to upgrade normal speaker into Wi-Fi speaker with lossless sound quality. What’s more, you can manage and tune the sound effect in Photic app to meet every independent requirement towards a specified criterion for bass, mid and high.

Image Source: PRNewsfoto/Photic

Audio processor

Alexa® Echo® controlled audio processor

  • Start and control your music with your voice. Amazon Alexa built right in, connecting into IoT world.
  • Connect to your home audio system and normal speakers to play music wirelessly, that will enhance the sound quality brought by cloud streaming, as Wi-Fi offers wide bandwidth ensuring the lossless music download and play smoothly.
  • Manage the sound effect in Photic app to your customized sound effect, a specified criterion for bass, mid and high.
  • More online resources like music/radio can be played and transmitted to the audio devices by Wi-Fi/DLNA/Airplay connection.
  • The metal housing with slim body delivers stylish and scientific sense, matching the latest technology development.

Wireless Charger

  • The smart phone can be leaned on the charger while center part is opened up with extensible length to fit the size of different smart phones and reach an optimal charging status; The center part is also foldable only if it is pressed, to meet the demands from customers who prefer to put their phones flatly.
  • The center part is decorated by a silica plate in green, also functions holding the phones firmly.
  • 10W output charge delivers faster wireless charging for all Qi-enables devices at optimal speed.
  • Available in Spring 2018 at Photic

Voiced controlled car audio system and charger

This is a good and inexpensive choice when it comes to adding Bluetooth calling and streaming capabilities to your car’s music system. One of the most important aspect is that you can answer/reject a call or hang up after phone conversation closed, increase/lower the volume of the music streamed from your smartphone to the car stereo system, control the playlist without any participation of your hand-operation, just by your voice. That brings you a safe and convenient driving experience, what’s more, the Photic car audio system also powers up the dull car audio by connecting the smartphone into the system, more online radio/music/novel will be broadcasted on the car stereo transmitted from your smart phone. The extra two USB outputs maximum 4.8A juicing up two mobile devices.

The following instructions can be activated by voice:

 Feature

  • Stream music and calls directly from smart devices to the car stereo system via FM (87.5-108.0MHz), turn the traditional car audio into smart car stereo system.
  • Support A2DP, achieve the stereo music lossless transfer to your car audio system with crystal sound effect.
  • Built-in silica microphone, gives sensitive response to the command execution that brings good convenience when you are driving without the participation of hands that may lead to accident from distraction. So a hands-free phone conversation, music streaming will be enjoyed in the driving time.
  • Works with most Bluetooth enabled smart devices including iPhone, iPad, Samsung, Tablet and more.
  • High performance FM transmitter with very small power output but delivers powerful signal, that’s accord to the EU safety regulation on the RF products.
  • Supporting AUX output alternating FM, work with smart devices, MP3, MP4 players via 3.5mm audio jack input that delivers a even better sound effect without any lossless.
  • The extra two USB outputs maximum 4.8A juicing up two mobile devices simultaneously, we choose good quality components from Taiwan/Samsung/Toshiba to ensure good performance and long durability.

Mobile Power Charger

As a pioneer for mobile chargers, Photic keeps on creating the most unique and stylish mobile chargers for smart phone, tablets and other mobile related devices. Especially the foldable phone mount with inbuilt battery that works as an integrate power bank after removing from the socket, this is a miracle design that combines all these solutions into one stylish gadget. We are and will always be the leader for mobile chargers. (Photic)

Continue Reading

Technology

Vivo Showcases World’s First Ready-to-Produce In-Display Fingerprint Scanning Smartphone at CES 2018

Published

on

Image Source: FoneArena.com

At CES 2018, Vivo, a young global smartphone brand, showcases the world’s first ready-to-produce in-display fingerprint scanning smartphone that draws attention from a global audience. Leading with distinct innovative breakthroughs, the futuristic Vivo in-display fingerprint scanning smartphone offers consumers an unprecedented mobile experience, defining a new era of mobile interaction.

Vivo In-Display Fingerprint Scanning Technology in Detail

World’s First In-Display Fingerprint Smartphone Ready for Mass Production

At CES 2018, Vivo shows the world the first ready-to-produce smartphone featuring in-display fingerprint scanning technology, demonstrating its continued commitment to bringing an extraordinary user experience to consumers. This latest fingerprint scanning technology delivers a whole new mobile experience by enabling users to unlock their smartphone through one-touch fingerprint scanning directly on the smartphone display, while solving the industry’s challenge of providing a better and more convenient fingerprint authentication experience in future smartphones.

According to statistics from global consultancy Canalys, smartphone vendors shipped 22 million full-screen smartphones worldwide in the second quarter in 2017, up from 700,000 in the first quarter of this year. UBI Research predicted that bezel-less displays will grow in market share from 20% in 2017 to over 50% by 2020. Fingerprint recognition has long been one of the most common and well-known biometrics used to secure smartphones. As the industry moves into a new era of full-screen displays, it is natural that the fingerprint scanning technology needs to evolve to accommodate new user habits and demands for bigger screens without sacrificing user experience.

“With our efforts in extensive consumer research and long-term R&D investment, Vivo is well positioned to pioneer the development of fingerprint scanning technology. We first presented a prototype of our fingerprint scanning solution at MWC Shanghai 2017 based on an ultrasonic sensor, and have remained committed to realizing our vision for future smartphones,” said Alex Feng, Senior Vice President of Vivo. “Today’s showcase of a ready-to-produce in-display fingerprint scanning smartphone featuring an optical fingerprint sensor is a big leap forward in bringing consumers this long-awaited, futuristic mobile experience. We are very excited to make it available to consumers soon.”

Innovation that Delivers a New Level of User Experience

Vivo’s full-production smartphone is equipped with the industry-leading, world’s first in-display fingerprint scanning technology supported by global partner Synaptics.

Vivo In-Display Fingerprint Scanning Technology supports various usage scenarios beyond unlocking the smartphone, and is only activated when needed. A graphical UI will show up on Vivo’s smartphone screen in any scenario that fingerprint recognition is required, such as when the screen is off, during software unlocking, or even mobile payment authentication. Users can press the fingerprint graphic on the screen to perform unlocking, payment and other operations. When fingerprint recognition is not required, the UI will be invisible and will not disrupt the overall visual experience.

Vivo In-Display Fingerprint Scanning Technology outperforms other authentication solutions available for full-screen smartphones in many aspects. Compared to fingerprint sensors on the back of smartphones, Vivo In-Display Fingerprint Scanning Technology offers a more convenient operation without sacrificing the sleek and unified design of the smartphone. It also enables quick and secured authentication.

Full-screen displays are set to deliver a more immersive user experience for consumers as various interactions will be integrated and consolidated on the display. Vivo In-Display Fingerprint Scanning Technology replaces the physical fingerprint button on the screen, laying the foundation for a truly immersive experience.

The showcasing of the world’s first in-display fingerprint scanning smartphone ready for mass-production marks a significant leap forward in the industry’s development, taking users’ smartphone experience to a new level. The availability of Vivo’s first in-display fingerprint scanning smartphone will be announced in early 2018. (Vivo)

Continue Reading

Trending