Apps arriving from outside the somewhat curated Google Play store have frequently been a source of security problems for Android devices. Best PracticesThe best way to protect against these threats is to avoid downloading apps from outside of Google Play - a tip we mentioned earlier when talking about the recent Android security vulnerability. By doing it this way, the attacker was attempting to avoid scanners like Google's integrated Bouncer service. The attackers used a hacked Google Play developer account to distribute a redirector app:įigure 3: Redirector appThis redirector app contained ads that led to a variety of apps - including the fake security plugin. Because of this, it is quite easy to notice that something has gone wrong with their device.What's most interesting about this fake app, however, was how it was distributed. Many users have fallen victim to this not just because it uses KakaoTalk's brand, but also because it uses “Security” in its name as well.What does this malicious app do when it's installed? It reads the user's contacts and uses the phone's text messaging feature to send messages to all contacts. About a month ago, KakaoTalk warned users via their official Twitter account of a “KakaoTalk Security Plugin”:įigure 2: Twitter alert from KakaoTalkWe detect the fake security as ANDROIDOS_FAKEKKAO.A. Second example: Fake appAside from Trojanized apps, fake apps have used KakaoTalk's name as well. Unless steps are taken to obfuscate it, the source code of any Java app is relatively easy to obtain the attacker can then add or modify the code to introduce malicious behavior into the app. This app regularly sends out contact information, text messages, and some phone settings to a command-and-control server from where the attacker can retrieve it.This process of Trojanizing is made easier because most Android apps are written using the Java programming language. Table 1: Differences between legitimate and Trojanized versionsIn addition, when we examine the permissions used by the app, it's worth noting that the Trojanized app asks for more permissions than the legitimate app.įigure 1: Permissions of 'ANDROIDOS_ANALITYFTP.A'ANDROIDOS_ANALITYFTP.A seems to be a Trojanized app that can be used by eavesdroppers. If one examines the details of the app, one can see the differences between the legitimate app and the modified one: However, it actually contains malicious code.This particular Trojanized version of KakaoTalk is detected as ANDROIDOS_ANALITYFTP.A, and was distributed via email. This creates a Trojanized app which, to the user, can appear to be normal. First example: Trojanized AppOne common way to create malicious apps is to take a legitimate version of the app and add malicious code to it. (However, let's be clear that KakaoTalk is Kakaotalk Download not being the only brand targeted other brands and apps are also targets as well.) Users need to understand the threats posed by these malicious apps. For example, in Japan, both Line and KakaoTalk - two popular chat apps - both claim to have more than 100 million users in Japan.It shouldn't be a surprise that cybercriminals are using the names of these apps for their own attacks in this post we'll show how KakaoTalk is being targeted by attackers. How to use kakaotalk, how to use kakaotalk app, kakaotalk, kakaotalk app reviewin this kakaotalk tutorial you will be learning how to make an account on kaka.Ĭyber Threats Instant messaging apps are battling it out and trying to become the next popular means of communication that people will use. The most popular versions among the software users are 3.1, 2.7 and 2.6. This download was scanned by our built-in antivirus and was rated as malware free. is free to download from our software library. KakaoTalk also happens to be an awesome language learning. They even do online shopping and play games on the Kakao platform. South Koreans do practically everything on it-talk to friends, catch up on the news and find out the latest about their K-idols. KakaoTalk is the leading messenger app in South Korea. KakaoTalk is an instant messenger that can be used for sending text messages, photos, videos, voice notes, and locations. Make chatting extra fun with an array of emoticons and sticker collections. Send messages, photos, videos, voice notes and your location for free. KakaoTalk is a fast & multifaceted messaging app.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |