sha | DataProtectionCenter.com – Tech and Security

DroidKungFu Utilizes an Update Attack

25

Oct

2011

We did a quick post yesterday about a DroidKungfu sample that appeared to use a novel infection vector. Now, as promised, more technical details. The application we’ve been analyzing is called com.ps.keepaccount, and a quick check into its content reveals a couple of findings. The original application (SHA-1: 5e2fb0bef9048f56e461c746b6a644762f0b0b54) does not show any trace of […]

Category General Written by F-Secure Antivirus Research Weblog 0 Comments

These Aren’t the Droid Updates You’re Looking For

24

Oct

2011

Our Threat Solutions team discovered an interesting threat using a novel “infection vector” for Android today. Back in July, they analyzed Spyware:Android/SndApps, which, after an update, is able access various bits of personal information. Before the update, it only requests the “Internet” permission. It seems probable to us that users are less likely to carefully […]

Category General Written by F-Secure Antivirus Research Weblog 0 Comments

Somebody Doesn’t Like Krebs on Security

23

Jun

2011

At F-Secure Labs, we design, build, and use numerous systems that perform automated sample analysis. Some of that automation monitors suspicious code for various keywords. And why do we monitor for keywords? Because some malware authors like to embed hidden messages in their code. For example, Virus:W32/Divvi contains this string: “Mikko cut ur ponytail” — […]

Category General Written by F-Secure Antivirus Research Weblog 0 Comments

The Latest in IT Security

Posts Tagged ‘sha’

DroidKungFu Utilizes an Update Attack

These Aren’t the Droid Updates You’re Looking For

Somebody Doesn’t Like Krebs on Security

Categories

Featured

Archives

Latest Comments

About Us

Contact Us