Real Advances in Android Malware presented at HOPE 9

by Jimmy Shah,

Tags: Security

Summary : Attackers are starting to move on from simple attacks, mainly because users are beginning to figure out that the free adult entertainment or chat app shouldnt be sending SMS messages to expensive numbers. Theyre leveraging techniques from PC malware like server-side polymorphism, vulnerability exploits, botnets and network updates, and preemptive/direct attacks against security software. Its not all that bad. Attackers arent going out of their way to discover their own vulnerabilities or writing their own exploits. Theyre happy to re-purpose the work done by legitimate developers, security researchers, and the rooting community. If the malware has gotten trickier, what are those tricks? A look at portions of code and how earlier research is adapted by attackers.