A malicious code with a method of infiltrating a smartphone after first infecting a PC is found, so caution is required.
Eastsoft announced on the 24th that it discovered a new malware that infects smartphones connected to PCs.
According to EastSoft, the malicious code discovered this time infects the PC first, targeting the security vulnerability of the operating system. After that, connecting the Android smartphone to the infected PC causes a secondary infection.
First, when a PC user who does not have the latest security patch installed visits a fake website that has been altered by a hacker, the malicious code first infects the PC using the Drive-By-Download method. Then, when the Android smartphone is connected to the infected PC, the malicious code proceeds with a secondary infection by forcibly installing a malicious app on the smartphone without the user’s consent.
When this malicious app is installed, it leaks user information stored in smartphones, while Internet banking apps are replaced with fake banking apps, and various financial-related information is stolen. It is also known to block incoming calls and texts.
According to Eastsoft, this malicious code only penetrates Android devices with’USB debugging mode’ set, so it is diagnosed that it does not spread widely to general smartphone users.
However, if the connection between the PC and the Android smartphone is not successful, there is a concern that a larger number of users than expected may be exposed to this attack as the solution is often guided to activate the’USB debugging mode’.
Eastsoft added that Android app developers need special attention because they activate the USB debugging mode for debugging when developing Android apps.
“The malware found this time not only infects both PC and mobile devices, but also infects only Android devices with USB debugging mode set,” said Joon-seop Kim, head of EastSoft’s Security SW Business Division. “So, activate the mode. We would like to pay special attention from general users and Android app developers.
On the other hand, to find out whether the’USB debugging mode’ is activated or not, you can check in the Environment Settings → More → System Manager → Developer Options → USB Debugging checkbox.