Kaspersky Lab have discovered a new malicious application in Google Play, Guide for Pokemon Go, able to obtain access rights on smartphones with Android and then install/uninstall applications and display unsolicited advertising. The application has been downloaded over 500,000 times, with at least 6,000 successful infection. Kaspersky Lab announced Google about the presence of this Trojan, and the application was removed from Google Play. Many users use pokemon go cheats for to impress other gamers.
Pokemon Go global phenomenon spied a growing number of related applications and inevitable an interest as high in the community of cybercriminals. Kaspersky Lab analysis of the Trojan “Guide for Pokemon Go” revealed a malicious code that manages to gain administrator access to the Android operating system to install and uninstall other applications, and for displaying ads.
The Trojan has some interesting features which help may not be detected. For example, do not start to act the victim immediately install and open the applications. Instead, waiting for the user to install or uninstall another application and then verify the application is working on a real device or a virtual one.
If it has to do with a real device, Trojan wait another two hours before he start work. None at the moment is not certain that the infection occurred. After connecting to the server’s command and control and upload their information about the infected device: model, country of origin, language and OS version, the Trojan waits for an answer.
Only when receiving the response will continue with other applications and downloading, installing and implementing additional malicious modules. Those steps mean that control server can stop and attack if he wants – can avoid users who are considered or suspected that have a virtual device, for example.
Such malware has additional protection. After receiving the administrator eights, the Trojan will install modules in the device’s file system, installing and uninstalling other applications in secret and displaying unsolicited advertisements. Kaspersky Lab analysis shows that at least one other version of Pokemon Guide was available in Google Play in July 2016.
In addition, researchers found infected with the same nine other applications available in Google Play with the same Trojan in different times, starting with December 2015. From Kaspersky Lab information, it appears that more than 6,000 infections have been succesfull so far, counting among countries are Russia, India and Indonesia.
The application is designed for English speaking users, it is possible that other people have been affected.
In the online environment, wherever are a large number of users, will come soon and cybercriminals. Pokemon Go is no exception, victims might not notice Trojan obtrusive advertising, at least initially, but long – term implications could be more serious. If you are one of victims, then another person is inside your phone, control the operating system and everything you have in your device. Even if the application is no longer in stores, hold a million people are vulnerable – and we hope that this announcement would put them on guard, to take action.
Users who suspect may be affected by this Trojan, should install a security solution, such as Kaspersky Internet Security for Android on their device. If, after scanning, it will result that the device has been infected, the best way to remove malware that has administrator rights is to backup the data and bring the device to factory settings. In addition, Kaspersky Lab recommends that users always check the applications you install were created by a developer known to keep your operating system and software applications updated and do not download anything that looks suspicious or out of source which can not be verified. All Kaspersky Lab detects this Trojan.
The older generations uses the Internet for many details of their lives – making them more vulnerable to cyber criminals if they continue to come online and without taking precautions. Senios use the internet to communicate with loved ones – 94% of people over 55 years old send e – mails regularly. Also use inline to solve everyday problems. This group tends to a greater extent to make financial transactions on the Internet: 90% of them shopping and banking online.