Thursday, December 30, 2010

Android Trojan Horse called Gemini is on the loose




You can never be too crazy about your security. When I got my Android phone a while back, one of the first programs I installed was the Lookout security suite. It backs up my phone and checks every download for bad stuff.

Now comes word from the website talk android.com about a Trojan horse program targeting the Android OS. You can't get it on Programs downloaded from the Android marketplace, but it pays to be vigilant.

Here is what Talk android.com had to say about it.

New Android trojan virus discovered, dubbed “Gemini”




Today, mobile security company Lookout released some information regarding a new virus found in the wild, and it’s targeting Android phones. The virus comes to us by way of China, and has been dubbed “Gemini”. The app attaches itself to legitimate applications, such as:

Monkey Jump 2
Sex Positions
President vs. Aliens
City Defrense
Baseball Superstars 2010
According to Lookout:

The specific information it collects includes location coordinates and unique identifiers for the device (IMEI) and SIM card (IMSI). At five-minute intervals, Geinimi attempts to connect to a remote server using one of ten embedded domain names. A subset of the domain names includes www.widifu.com, www.udaore.com, www.frijd.com, www.islpast.com and www.piajesj.com. If it connects, Geinimi transmits collected device information to the remote server.

We will say this, however… this isn’t a giant threat. In order to get infected, you would have to install an sideload app from a 3rd party or Chinese Market, meaning the trojan doesn’t come to your phone by way of the official Android Market. So be careful out there, users, and always make sure your apps are coming from a legal, legit source. Lookout Mobile Security, however, has been updated to protect against the malware, so be sure to get it here if you aren’t already using it.

- Posted using BlogPress from my iPad

Post a Comment