News & Information for Technology Purchasers NewsFactor Sites:     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
Neustar, Inc.
Protect your website & network
using real-time information & analysis
Mobile Tech
24/7/365 Network Uptime
Average Rating:
Rate this article:  
Some Android Phones Found Spewing Malicious Spam
Some Android Phones Found Spewing Malicious Spam

By Jennifer LeClaire
July 5, 2012 10:52AM

    Bookmark and Share
Security researcher Neil Roiter said the Android bothet raises new concerns about mobile device security and associated cyber attacks. "Google is making efforts to keep rogue applications from the Android market," Roiter said. "However, it stands to reason that Google cannot protect users who opt to download applications from non-sanctioned sites."

Related Topics


If you have an Android device, watch out. You may be part of a mobile botnet. A Microsoft researcher is warning that hackers may have hijacked some Android phones to send spam e-mails.

Microsoft researcher Terry Zink pointed to trails of spam being sent by Android devices from Yahoo mail servers. It would not be the first time in recent months that Android was hit with malware issues. But the new revelation marks a new strategy.

"I've written in the past that Android has the most malware compared to other smartphone platforms, but your odds of downloading and installing a malicious Android app is pretty low if you get it from the Android Marketplace," Zink wrote in a blog post. "But if you get it from some guy in a back alley on the Internet, the odds go way up."

Downloading Rogue Apps

Zink has also written that users in the developed world usually have better security practices and fewer malware infections than users in the developing world. Most of the countries to which Zink tracked the Yahoo IP addresses were in the developing world -- Chile, Indonesia, Lebanon, Oman, Philippines, Russia, Saudi Arabia, Thailand, Ukraine and Venezuela.

"I am betting that the users of those phones downloaded some malicious Android app in order to avoid paying for a legitimate version and they got more than they bargained for. Either that or they acquired a rogue Yahoo Mail app," Zink said.

"This ups the ante for spam filters. If people download malicious apps onto their phone that capture keystrokes for their e-mail software, it makes it way easier for spammers to send abusive mail. This is the next evolution in the cat-and-mouse game that is e-mail security."

Exercising Caution

Neil Roiter, research director at Corero Network Security, said the fact that we are seeing spam from a botnet of hijacked Android phones for the first time highlights the risk of downloading applications from unauthorized sites rather than the official Android market, Google Play, or Amazon's Appstore for Android. PC-based botnets are major cyber crime weapons.

But, he told us, this development raises new concerns about mobile device security and associated cyber attacks.

"Google is making efforts to keep rogue applications from the Android market," Roiter said. "However, it stands to reason that Google cannot protect users who opt to download applications from non-sanctioned sites."

What types of messages are the botnets sending? According to SophosLabs, the malware ads are for medications for weight loss, diabetes, pain, and Viagra. Some of the mail contains images.

Sophos' Chester Wisniewki said it is likely that Android users are downloading Trojanized pirated copies of paid Android applications.

"The widespread nature of source devices is unusual as most Android malware is not downloaded from Google Play, but localized 'off market' download sites," he wrote in the Sophos blog.

"Android users should exercise caution when downloading applications for their devices and definitely avoid downloading pirated programs from unofficial sources. Google, Amazon and others may not be perfect at keeping malware off of their stores, but the risk increases dramatically outside of their ecosystems."

Tell Us What You Think


Neustar, Inc. (NYSE: NSR) is a trusted, neutral provider of real-time information and analysis to the Internet, telecommunications, information services, financial services, retail, media and advertising sectors. Neustar applies its advanced, secure technologies in location, identification, and evaluation to help its customers promote and protect their businesses. More information is available at

 Mobile Tech
1.   Is the Amazon Fire Phone a Winner?
2.   Review: Amazon's New Fire Phone
3.   Apple Smart Watch Patent Surfaces
4.   iPhone 6: Bad for Apple Tablet Sales?
5.   GoTenna: Work-Thru for Dead Zones

Android SMS Worm on the Loose
Malware lets bad actors cash in.
Average Rating:
Is the Amazon Fire Phone a Winner?
It coulda been a contender -- but isn't.
Average Rating:
Review: Amazon's New Fire Phone
New ways to navigate, discover, shop.
Average Rating:

Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Researchers Working To Fix Tor Security Exploit
Developers for the Tor privacy browser are scrambling to fix a bug revealed Monday that researchers say could allow hackers, or government surveillance agencies, to track users online.
Wall Street Journal Hacked Again
Hacked again. That’s the story at the Wall Street Journal this week as the newspaper reports that the computer systems housing some of its news graphics were breached. Customers not affected -- yet.
Dropbox for Business Beefs Up Security
Dropbox is upping its game for business users. The cloud-based storage and sharing company has rolled out new security, search and other features to boost its appeal for businesses.

Enterprise Hardware Spotlight
Microsoft Makes Design Central to Its Future
Over the last four years, Microsoft has doubled the number of designers it employs, putting a priority on fashioning devices that work around people's lives -- and that are attractive and cool.
Contrary to Report, Lenovo's Staying in Small Windows Tablets
Device maker Lenovo has clarified a report that indicated it is getting out of the small Windows tablet business -- as in the ThinkPad 8 and the 8-inch Miix 2. But the firm said it is not exiting that market.
Seagate Unveils Networked Drives for Small Businesses
Seagate is out with five new networked attached storage products aimed at small businesses. The drives are for companies with up to 50 workers, and range in capacity from two to 20 terabytes.

NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | CRM Systems | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.